Test Kennung:	1.3.6.1.4.1.25623.1.0.900385
Kategorie:	Web application abuses
Titel:	Campsite 'g_campsiteDir' Remote and Local File Inclusion Vulnerabilities
Zusammenfassung:	This host is running Campsite and is prone to multiple vulnerabilities.
Beschreibung:	Summary: This host is running Campsite and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - Input validation errors in the 'admin-files', 'conf/liveuser_configuration.php' 'include/phorum_load.php', scripts when processing the 'g_campsiteDir' parameter. - Input validation error in the 'admin-files/templates/list_dir.php' script when, processing the 'listbasedir' parameter. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary local files, and cause XSS attack, Directory Traversal attack and remote File Injection attack on the affected application. Affected Software/OS: Campware, Campsite version 3.3.0 RC1 and prior. Solution: Upgrade to Campsite version 3.3.6 or later CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	BugTraq ID: 35456 Common Vulnerability Exposure (CVE) ID: CVE-2009-2181 https://www.exploit-db.com/exploits/8995 http://osvdb.org/55313 Common Vulnerability Exposure (CVE) ID: CVE-2009-2182 Common Vulnerability Exposure (CVE) ID: CVE-2009-2183 http://osvdb.org/55312
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.