XOOPS Mainfile.PHP Local File Include Vulnerability

Bugtraq ID:	18061
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 22 2006 12:00AM
Updated:	May 23 2006 08:18PM
Credit:	rgod is credited with the discovery of this vulnerability.
Vulnerable:	Xoops Xoops 2.0.13 .2 Xoops Xoops 2.0.13 .1 Xoops Xoops 2.0.12 a Xoops Xoops 2.0.12 Xoops Xoops 2.0.11 Xoops Xoops 2.0.10 Xoops Xoops 2.0.9 .3 Xoops Xoops 2.0.9 .2 Xoops Xoops 2.0.5 .2 Xoops Xoops 2.0.5 .1 Xoops Xoops 2.0.5 Xoops Xoops 2.0.3 Xoops Xoops 2.0.2 Xoops Xoops 2.0.1 Xoops Xoops 2.0
Not Vulnerable:

XOOPS Mainfile.PHP Local File Include Vulnerability

XOOPS is prone to a local file-include vulnerability. This may allow unauthorized users to view files and to execute local scripts.

An attacker may also be able to execute arbitrary code by way of uploaded avatars.

Version 2.0.13.2 is vulnerable; earlier versions may also be affected.

XOOPS Mainfile.PHP Local File Include Vulnerability

This issue can be exploited through a web client.

The following exploit is available:

• /data/vulnerabilities/exploits/XOOPS-0522-lfi.php

XOOPS Mainfile.PHP Local File Include Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]

XOOPS Mainfile.PHP Local File Include Vulnerability

References:

• ProManager Homepage (Promanager)
  
• XOOPS <= 2.0.13.2 'xoopsOption[nocommon]' exploit (rgod)
  
• XOOPS <= 2.0.13.2 'xoopsOption[nocommon]' exploit (rgod)