CVE-2008-0094
published 2008-01-08CVE-2008-0094: Multiple directory traversal vulnerabilities in MODx Content Management System 0.9.6.1 allow remote attackers to (1) include and execute arbitrary local files…
PriorityP334medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
3.23%
86.7th percentile
Multiple directory traversal vulnerabilities in MODx Content Management System 0.9.6.1 allow remote attackers to (1) include and execute arbitrary local files via a .. (dot dot) in the as_language parameter to assets/snippets/AjaxSearch/AjaxSearch.php, reached through index-ajax.php; and (2) read arbitrary local files via a .. (dot dot) in the file parameter to assets/js/htcmime.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| modxcms | modxcms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
MODx 0.9.6.1 - 'htcmime.php' Source Code Information Disclosure
exploitdb·2008-01-02
CVE-2008-0094 MODx 0.9.6.1 - 'htcmime.php' Source Code Information Disclosure
MODx 0.9.6.1 - 'htcmime.php' Source Code Information Disclosure
---
source: https://www.securityfocus.com/bid/27096/info
MODx is prone to a vulnerability that allows attackers to access source code because the application fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the webserver process. Information obtained may aid in further attacks.
MODx 0.9.6.1 is vulnerable; other versions may also be affected.
http://www.example.com/modx-0.9.6.1/assets/js/htcmime.php?file=../../manager/includes/config.inc.php%00.htc
Exploit-DB
MODx 0.9.6.1 - 'AjaxSearch.php' Local File Inclusion
exploitdb·2008-01-02
CVE-2008-0094 MODx 0.9.6.1 - 'AjaxSearch.php' Local File Inclusion
MODx 0.9.6.1 - 'AjaxSearch.php' Local File Inclusion
---
source: https://www.securityfocus.com/bid/27097/info
MODx is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability using directory-traversal strings to execute local script code in the context of the application. This may allow the attacker to access sensitive information that may aid in further attacks.
MODx 0.9.6.1 is vulnerable to this issue; other versions may also be affected.
Method=POST
Action=http://www.example.com/modx-0.9.6.1/index-ajax.php?
Name=as_language Value=../ajaxSearch_readme.txt%00
Name=q Value=assets/snippets/AjaxSearch/AjaxSearch.php
http://modxcms.com/forums/index.php/topic%2C21290.0.htmlhttp://secunia.com/advisories/28220http://securityreason.com/securityalert/3522http://www.securityfocus.com/archive/1/485707/100/0/threadedhttp://www.securityfocus.com/bid/27096http://www.securityfocus.com/bid/27097https://exchange.xforce.ibmcloud.com/vulnerabilities/39352http://modxcms.com/forums/index.php/topic%2C21290.0.htmlhttp://secunia.com/advisories/28220http://securityreason.com/securityalert/3522http://www.securityfocus.com/archive/1/485707/100/0/threadedhttp://www.securityfocus.com/bid/27096http://www.securityfocus.com/bid/27097https://exchange.xforce.ibmcloud.com/vulnerabilities/39352
2008-01-08
Published