CVE-2008-6177

Name of the Vulnerable Software and Affected Versions LightBlog version 9.8

Description The issue allows remote attackers to include and execute arbitrary local files. This can be achieved by exploiting directory traversal vulnerabilities when the magic quotes gpc setting is disabled. The vulnerabilities exist in the username parameter to view member.php, the username post parameter to login.php, and the Lightblog username cookie parameter to check user.php. Attackers can use a .. (dot dot) sequence in these parameters to traverse directories.

Recommendations For LightBlog version 9.8, consider disabling the view member.php, login.php, and check user.php scripts until a patch is available, or restrict access to these scripts to minimize the risk of exploitation. Additionally, enable the magic quotes gpc setting to prevent directory traversal attacks via the username, username post, and Lightblog username parameters.