Else If CMS Multiple Input Validation Vulnerabilities
BID:25951
Info
Else If CMS Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 25951 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5305 CVE-2007-5306 CVE-2007-5307 CVE-2007-5304 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 06 2007 12:00AM |
| Updated: | Jul 05 2016 10:00PM |
| Credit: | HACKERS PAL is credited with discovering these vulnerabilities. |
| Vulnerable: |
Yannick Tanguy Else If CMS 0.6-beta |
| Not Vulnerable: | |
Discussion
Else If CMS Multiple Input Validation Vulnerabilities
Else If CMS is prone to multiple remote file-include vulnerabilities, multiple cross-site scripting vulnerabilities, and a remote file-upload vulnerability.
Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code, and retrieve arbitrary content within the context of the webserver process.
Else If CMS 0.6-beta is vulnerable; other versions may also be affected.
Else If CMS is prone to multiple remote file-include vulnerabilities, multiple cross-site scripting vulnerabilities, and a remote file-upload vulnerability.
Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code, and retrieve arbitrary content within the context of the webserver process.
Else If CMS 0.6-beta is vulnerable; other versions may also be affected.
Exploit / POC
Else If CMS Multiple Input Validation Vulnerabilities
To exploit the cross-site scripting issue, an attacker must entice an unsuspecting victim into following a malicious URI. An attacker can exploit the other issues through a browser.
The following proof-of-concept URIs are available, along with an exploit for the remote file-include vulnerabilities:
To exploit the cross-site scripting issue, an attacker must entice an unsuspecting victim into following a malicious URI. An attacker can exploit the other issues through a browser.
The following proof-of-concept URIs are available, along with an exploit for the remote file-include vulnerabilities:
Solution / Fix
Else If CMS Multiple Input Validation Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Else If CMS Multiple Input Validation Vulnerabilities
References:
References:
- Else If CMS Home Page (Yannick Tanguy)
- Else If CMS Project Page (Yannick Tanguy)
- Else If cms Multiple Remote vulnerabilities ([email protected])