BID:21112

Hot Links Perl PHP Information Disclosure Vulnerability

Info

Hot Links Perl PHP Information Disclosure Vulnerability

Bugtraq ID:	21112
Class:	Environment Error
CVE:	CVE-2006-7086
Remote:	Yes
Local:	No
Published:	Nov 15 2006 12:00AM
Updated:	Jul 06 2016 02:40PM
Credit:	hack2prison is credited with the discovery of this vulnerability.
Vulnerable:	Thepeak Thepeak File Upload 1.3

Not Vulnerable:

Discussion

Hot Links Perl PHP Information Disclosure Vulnerability

Hot Links is prone to an information-disclosure vulnerability because it fails to authenticate the user during specific download requests.

An attacker can exploit this issue to retrieve administrative backup files. Information obtained may aid in further attacks.

All versions of Hot Links SQL-PHP and Hot Links Pro are vulnerable; other forks may also be affected.

Exploit / POC

Hot Links Perl PHP Information Disclosure Vulnerability

Attackers can exploit this issue via a web client.

The following proof-of-concept URI is available:

http://www.example.com/[path]/dlback.php?dl=fullback

Solution / Fix

Hot Links Perl PHP Information Disclosure Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References

Hot Links Perl PHP Information Disclosure Vulnerability

References:

Mr. CGI Guy Homepage (Mr. CGI Guy)
Hot Links download backup authorized vulnerabilities (re-post (hack2prison)