PT-2009-6393 · Sweetrice · Sweetrice

Publicado

2009-12-08

Atualizado

2009-12-09

CVE-2009-4231

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SweetRice versions 0.5.3 and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via .. (dot dot) in the plugin parameter. This can be exploited by sending a request with the plugin parameter set to a value that includes ../ sequences, potentially leading to the execution of sensitive files on the server.

Recommendations For SweetRice versions 0.5.3 and earlier, consider restricting access to the as/lib/plugins.php file until a patch is available. As a temporary workaround, avoid using the plugin parameter with values that include ../ sequences to minimize the risk of exploitation.

Exploit

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2009-4231

Produtos afetados

Sweetrice

PT-2009-6393 · Sweetrice · Sweetrice

CVE-2009-4231

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4