CVE-2008-6877

Опубликовано: 27 июл. 2009

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Directory traversal vulnerability in admin/includes/initsystem.php in Zen Cart 1.3.8 and 1.3.8a, when .htaccess is not supported, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the loader_file parameter. NOTE: the vendor disputes this issue, stating "at worst, the use of this vulnerability will reveal some local file paths.

Ссылки

http://osvdb.org/46912
http://secunia.com/advisories/31039
Vendor Advisory
http://www.attrition.org/pipermail/vim/2008-July/002028.html
Exploit
http://www.securityfocus.com/bid/30179
Exploit
http://www.zen-cart.com/forum/showthread.php?t=102802
Exploit
https://www.exploit-db.com/exploits/6038
http://osvdb.org/46912
http://secunia.com/advisories/31039
Vendor Advisory
http://www.attrition.org/pipermail/vim/2008-July/002028.html
Exploit
http://www.securityfocus.com/bid/30179
Exploit
http://www.zen-cart.com/forum/showthread.php?t=102802
Exploit
https://www.exploit-db.com/exploits/6038

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:zen_cart:zen_cart:1.3.8:*:*:*:*:*:*:*

cpe:2.3:a:zen_cart:zen_cart:1.3.8a:*:*:*:*:*:*:*

EPSS

Процентиль: 56%

0.00342

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-m93x-gmx9-p93r

github

больше 3 лет назад

** DISPUTED ** Directory traversal vulnerability in admin/includes/initsystem.php in Zen Cart 1.3.8 and 1.3.8a, when .htaccess is not supported, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the loader_file parameter. NOTE: the vendor disputes this issue, stating "at worst, the use of this vulnerability will reveal some local file paths."