header-logo
Suggest Exploit
vendor:
Claroline
by:
Unknown
7.5
CVSS
HIGH
Local File Include, Cross-Site Scripting
CWE
Product Name: Claroline
Affected Version From: Pre-1.8.6
Affected Version To: 1.8.2005
Patch Exists: YES
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Claroline Local File Include and Cross-Site Scripting Vulnerabilities

The Claroline application is prone to a local file-include vulnerability and multiple cross-site scripting vulnerabilities. An attacker can exploit these vulnerabilities to execute local script code in the context of the application, access sensitive data, execute arbitrary code in the context of the webserver, steal cookie-based authentication credentials, and launch further attacks. The vulnerability can be exploited by accessing the following URL: http://www.example.com/inc/lib/languages.lib.php?language=../../[file]

Mitigation:

Upgrade to Claroline version 1.8.6 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25521/info

Claroline is prone to a local file-include vulnerability and multiple cross-site scripting vulnerabilities.

An attacker could exploit these issues to execute local script code in the context of the application and access sensitive data, which may aid in further attacks.The attacker may also be able to execute arbitray code in the context of the webserver. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

Versions prior to Claroline 1.8.6 are vulnerable. 

http://www.example.com/inc/lib/languages.lib.php?language=../../[file]

Navigation

Suggest Exploit

Services By CQR