Simple Plantilla PHP Multiple Input Validation Vulnerabilities
BID:22669
Info
Simple Plantilla PHP Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 22669 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1139 CVE-2007-1138 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 22 2007 12:00AM |
| Updated: | Jul 05 2016 10:21PM |
| Credit: | Laurent Gaffié is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Cromosoft Simple Plantilla PHP 0 |
| Not Vulnerable: | |
Discussion
Simple Plantilla PHP Multiple Input Validation Vulnerabilities
Simple Plantilla PHP is prone to multiple input-validation issues, including a local file-include vulnerability and an arbitrary file-upload vulnerability.
Attackers can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the context of the application. Attackers can exploit the arbitrary file-upload to execute malicious PHP code in the context of the webserver process.
Exploiting these issues may allow attackers to compromise the application and the underlying system or to access sensitive information; other attacks are also possible.
Simple Plantilla PHP is prone to multiple input-validation issues, including a local file-include vulnerability and an arbitrary file-upload vulnerability.
Attackers can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the context of the application. Attackers can exploit the arbitrary file-upload to execute malicious PHP code in the context of the webserver process.
Exploiting these issues may allow attackers to compromise the application and the underlying system or to access sensitive information; other attacks are also possible.
Exploit / POC
Simple Plantilla PHP Multiple Input Validation Vulnerabilities
Attackers can exploit these issues via a web client.
The following example URI demonstrates the local file-include:
http://www.example.com/zadminxx/list_main_pages.php?nfolder=/etc/
Attackers can exploit these issues via a web client.
The following example URI demonstrates the local file-include:
http://www.example.com/zadminxx/list_main_pages.php?nfolder=/etc/
Solution / Fix
Simple Plantilla PHP Multiple Input Validation Vulnerabilities
Solution:
Currently we are not aware of any solutions for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any solutions for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Simple Plantilla PHP Multiple Input Validation Vulnerabilities
References:
References:
- Vendor Homepage (Cromosoft)
- Plantilla PHP Simple (Laurent Gaffié)