D_Bug

Researcher fromNemesisSecurityTeam
#13160of 53,622
20Total CVSS
Vulnerabilities · 4
Medium
4
PT-2005-2941
5.0
2005-06-15
Bitrix · Bitrix Site Manager · CVE-2005-1995
**Name of the Vulnerable Software and Affected Versions** Bitrix Site Manager versions 4.0.x **Description** The issue allows remote attackers to obtain sensitive information by making a direct request to certain files. Specifically, requests to "subscr form.php" or "dbquery error.php" can reveal the path in an error message. **Recommendations** For versions 4.0.x, consider restricting access to the "subscr form.php" and "dbquery error.php" files to minimize the risk of exploitation. As a temporary workaround, disabling error messages that reveal sensitive information can also help mitigate the issue.
PT-2005-2942
5.0
2005-06-15
Bitrix · Bitrix Site Manager · CVE-2005-1996
**Name of the Vulnerable Software and Affected Versions** Bitrix Site Manager versions 4.0.x **Description** The issue allows remote attackers to execute arbitrary PHP code via the `DOCUMENT ROOT` parameter in the `start.php` file. This can be exploited by manipulating the ` SERVER[DOCUMENT ROOT]` parameter. **Recommendations** For Bitrix Site Manager versions 4.0.x, consider restricting access to the `start.php` file until a patch is available. As a temporary workaround, avoid using the ` SERVER[DOCUMENT ROOT]` parameter in the affected file to minimize the risk of exploitation.
PT-2005-2943
5.0
2005-06-15
Mcgallery · Mcgallery · CVE-2005-1997
**Name of the Vulnerable Software and Affected Versions** McGallery version 1.1 **Description** The issue allows remote attackers to connect to arbitrary databases or gain sensitive information by triggering an error. This is achieved via a modified `host` parameter in the `show.php` file. **Recommendations** For McGallery version 1.1, consider restricting access to the `show.php` file until a patch is available, and avoid using modified `host` parameters to minimize the risk of exploitation.
PT-2005-2944
5.0
2005-06-15
Mcgallery · Mcgallery · CVE-2005-1998
**Name of the Vulnerable Software and Affected Versions** McGallery version 1.1 **Description** The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the admin.php file. This is achieved by using a .. (dot dot) in the `lang` parameter. **Recommendations** For McGallery version 1.1, consider restricting access to the admin.php file or the `lang` parameter to minimize the risk of exploitation until a patch is available.