Nova CMS 'dir' Parameter Directory Traversal Vulnerability
BID:51611
Info
Nova CMS 'dir' Parameter Directory Traversal Vulnerability
| Bugtraq ID: | 51611 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 23 2012 12:00AM |
| Updated: | Jan 23 2012 12:00AM |
| Credit: | Red Security TEAM |
| Vulnerable: |
Nova CMS Nova CMS 1 |
| Not Vulnerable: | |
Discussion
Nova CMS 'dir' Parameter Directory Traversal Vulnerability
Nova CMS is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data.
Successfully exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks.
Nova CMS 1 is vulnerable; other versions may also be affected.
Nova CMS is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data.
Successfully exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks.
Nova CMS 1 is vulnerable; other versions may also be affected.
Exploit / POC
Nova CMS 'dir' Parameter Directory Traversal Vulnerability
Attackers can use a browser to exploit this issue.
The following example data is available:
dir=uploads%2Fforum%2Fdata-YourUsername2F&options=true&ajax=true
Attackers can use a browser to exploit this issue.
The following example data is available:
dir=uploads%2Fforum%2Fdata-YourUsername2F&options=true&ajax=true