TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
BID:25975
Info
TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
| Bugtraq ID: | 25975 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5318 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 09 2007 12:00AM |
| Updated: | May 07 2015 05:35PM |
| Credit: | Stephan Munz is credited with the discovery of this vulnerability. |
| Vulnerable: |
TYPOlight webCMS 2.4.6 |
| Not Vulnerable: | |
Discussion
TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
TYPOlight webCMS is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to sufficiently sanitize user-supplied input.
An attacker can exploit this issue to download arbitrary files within the context of the webserver process. Information obtained may aid in further attacks.
This issue affects TYPOlight webCMS 2.4.6; other versions may also be affected.
TYPOlight webCMS is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to sufficiently sanitize user-supplied input.
An attacker can exploit this issue to download arbitrary files within the context of the webserver process. Information obtained may aid in further attacks.
This issue affects TYPOlight webCMS 2.4.6; other versions may also be affected.
Exploit / POC
TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
Attackers can use a browser to exploit this issue.
Attackers can use a browser to exploit this issue.
Solution / Fix
TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
References:
References:
- TYPOlight webCMS Homepage (TYPOlight)