BID:17341

Claroline ScormExport.inc.PHP File Include Vulnerability

Info

Claroline ScormExport.inc.PHP File Include Vulnerability

Bugtraq ID:	17341
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 31 2006 12:00AM
Updated:	May 08 2006 09:59PM
Credit:	Discovered by rgod <[email protected]>.
Vulnerable:	Claroline Claroline 1.7.4 Claroline Claroline 1.7.2 Claroline Claroline 1.6 rc1 Claroline Claroline 1.6 beta Claroline Claroline 1.6 Claroline Claroline 1.5.4 Claroline Claroline 1.5.3 Claroline Claroline 1.5

Not Vulnerable:	Claroline Claroline 1.7.5

Discussion

Claroline ScormExport.inc.PHP File Include Vulnerability

Claroline is affected by a remote file-include vulnerability.

An attacker may leverage this issue to execute arbitrary server-side script code that resides on an affected computer or a remote location with the privileges of the webserver process. This may potentially facilitate unauthorized access.

Exploit / POC

Claroline ScormExport.inc.PHP File Include Vulnerability

This issue may be exploited through the use of a web browser.

Proof-of-concept code has been provided:

/data/vulnerabilities/exploits/claroline-1.7.4-remote-and-local-file-include.php

Solution / Fix

Claroline ScormExport.inc.PHP File Include Vulnerability

Solution:
The vendor has released version 1.7.5 to address this and other issues.

Claroline Claroline 1.5