PT-2009-6393 · Sweetrice · Sweetrice

Published

2009-12-08

Updated

2009-12-09

CVE-2009-4231

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SweetRice versions 0.5.3 and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via .. (dot dot) in the plugin parameter. This can be exploited by sending a request with the plugin parameter set to a value that includes ../ sequences, potentially leading to the execution of sensitive files on the server.

Recommendations For SweetRice versions 0.5.3 and earlier, consider restricting access to the as/lib/plugins.php file until a patch is available. As a temporary workaround, avoid using the plugin parameter with values that include ../ sequences to minimize the risk of exploitation.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2009-4231

Affected Products

Sweetrice

PT-2009-6393 · Sweetrice · Sweetrice

CVE-2009-4231

Weakness Enumeration

Related Identifiers

Affected Products

References · 4