header-logo
Suggest Exploit
vendor:
XMB Forum 1.6 Magic Lantern
by:
SecurityFocus
4.3
CVSS
MEDIUM
Logging Bypass and Log File Retrieval
200
CWE
Product Name: XMB Forum 1.6 Magic Lantern
Affected Version From: 1.6
Affected Version To: 1.6
Patch Exists: N/A
Related CWE: N/A
CPE: a:xmb_forum:xmb_forum:1.6
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

XMB Forum 1.6 Magic Lantern Logging Bypass and Log File Retrieval Vulnerability

XMB Forum 1.6 Magic Lantern allows remote users to conduct activities in the forum while bypassing normal logging functions. This is accomplished by submitting an arbitrary string as the 'analized' variable to index.php. Log information is written only if this variable is empty, so submitting a string to it bypassing the logging. In addition, log files (index_log.log and cplogfile.log) may be written with improper permissions allowing users to retrieve them with a browser.

Mitigation:

Ensure that log files are written with proper permissions and that the 'analized' variable is properly checked.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/4722/info

XMB Forum 1.6 Magic Lantern allows remote users to conduct activities in the forum while bypassing normal logging functions. This is accomplished by submitting an arbitrary string as the "analized" variable to index.php. Log information is written only if this variable is empty, so submitting a string to it bypassing the logging.

In addition, log files (index_log.log and cplogfile.log) may be written with improper permissions allowing users to retrieve them with a browser.

/forumpath/index.php?analized=anything

Navigation

Suggest Exploit

Services By CQR