lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <BAY19-DAV1980029C8AD603C31E7CA1D9D60@phx.gbl> Date: Thu Jul 21 21:30:27 2005 From: se_cur_ity at hotmail.com (Morning Wood) Subject: PHPTopSites ------------------------------------------------------------ - EXPL-A-2005-012 exploitlabs.com Advisory 041 - ------------------------------------------------------------ - PHP TopSites - AFFECTED PRODUCTS ================= PHP TopSites FREE ( all versions ) PHP TopSites PRO ( all versions ) http://itop10.net OVERVIEW ======== PHP TopSites is a PHP/MySQL-based customizable TopList script DETAILS ======= 1. Information Disclosure The setup / admin section (admin control panel) can be accessed without authorization. This exposes the administrative mysql info including user-db-pass-host and admin email addresses. Further access allows reading / editing of toplist member info including the above data. POC === 1. ------ The configuration of the top lists in the admin area can be accessed by the following URL: http://[host]/[toplistdirectory]/[admindirectory]/setup.php SOLUTION: ========= vendor contact: roman@...p10.net June 18, 2005 1st notification roman@...p10.net June 19, 2005 Vendor reply response: admin directory should be .htaccess protected roman@...p10.net June 19, 2005 Researcher reply response: this is not satisfactory roman@...p10.net June 21, 2005 response: i will fix it as soon as possible roman@...p10.net July 7 roman@...p10.net July 13 no response(s) recieved ( itop10.net ) appears down Credits ======= This vulnerability was discovered and researched by h4cky0u of http://www.h4cky0u.org mail: h4cky0u at gmail.com and Donnie Werner of exploitlabs mail: wood at exploitlabs.com mail: morning_wood at zone-h.org -- web: http://exploitlabs.com web: http://zone-h.org original Advisory available at: http://exploitlabs.com/files/advisories/EXPL-A-2005-012-PHPTopSites.txt
Powered by blists - more mailing lists