Webdirectory Pro Input Validation Vulnerability

vendor:

Webdirectory Pro

by:

SecurityFocus

6.4

CVSS

MEDIUM

Input Validation Vulnerability

CWE

Product Name: Webdirectory Pro

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: N/A

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2002

Webdirectory Pro Input Validation Vulnerability

Webdirectory Pro contains an input validation vulnerability which may lead to disclosure of sensitive information to attackers. The value of the 'show' variable is not properly validated and can be used to force 'directorypro.cgi' to output the contents of an arbitrary webserver-readable file to a remote attacker. This is due to a lack of checks for NULL bytes in user-supplied data. Submit a request such as this to a vulnerable webserver: http://target/cgi-bin/directorypro.cgi?want=showcat&show=../../../..//etc/motd%00 This will result in the contents of '/etc/motd' being output.

Mitigation:

Input validation should be performed to ensure that user-supplied data does not contain malicious data.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/2793/info

Webdirectory Pro is a web application used to create a searchable directory of links developed by Cosmicperl.

Webdirectory Pro contains an input validation vulnerability which may lead to disclosure of sensitive information to attackers. The value of the 'show' variable is not properly validated and can be used to force 'directorypro.cgi' to output the contents of an arbitrary webserver-readable file to a remote attacker.

This is due to a lack of checks for NULL bytes in user-supplied data. 

Submit a request such as this to a vulnerable webserver:

http://target/cgi-bin/directorypro.cgi?want=showcat&show=../../../..//etc/motd%00

This will result in the contents of '/etc/motd' being output.