by r0t,der4444,cembo,VietMafia

Thursday, November 24, 2005

ActiveCampaign SupportTrio Local File Inclusion vuln.

ActiveCampaign SupportTrio Local File Inclusion vuln.
Vuln. dicovered by : r0t
Date: 24 nov. 2005
Vendor:http://www.activecampaign.com/supporttrio/
affected version: 1.4 and prior

Vuln. description:
Input passed to the "page" parameter in "index.php" isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from local resources.

Successful exploitation requires that "magic_quotes_gpc" is disabled.


example:
http://host/SupportTrio/index.php?pf=kb&page=host/file

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew