vendor:
EggAvatar
by:
DSecurity
8.8
CVSS
HIGH
Local File Read
20
CWE
Product Name: EggAvatar
Affected Version From: 3.8.2000
Affected Version To: 3.8.2000
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: vBulletin 3.8.0
2011
EggAvatar for vBulletin 3.8.x local file read
EggAvatar is a plugin for vBulletin 3.8.x which allows an attacker to read any file on the server by exploiting a vulnerability in the eggavatar.php file. The vulnerability is caused due to the improper validation of user-supplied input in the 'old' parameter of the 'eggavatar.php' script. This can be exploited to read any file on the server with the privileges of the webserver.
Mitigation:
Upgrade to the latest version of vBulletin 3.8.x and disable the EggAvatar plugin.