CVE-2008-1798
published 2008-04-15CVE-2008-1798: Directory traversal vulnerability in forum/kietu/libs/calendrier.php in Dragoon 0.1 allows remote attackers to include and execute arbitrary local files via a…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.29%
81.0th percentile
Directory traversal vulnerability in forum/kietu/libs/calendrier.php in Dragoon 0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cal[lng] parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dragoon | dragoon | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Google Chrome - Carriage Return Null Object Memory Exhaustion
exploitdb·2008-09-24
CVE-2008-4340 Google Chrome - Carriage Return Null Object Memory Exhaustion
Google Chrome - Carriage Return Null Object Memory Exhaustion
---
Google Chrome Carriage Return Null Object Memory Exhaustion Remote Dos.
window.open("\r\n\r\n");
window.refresh();
window.open("\r\n\r\n");
Google Chrome Carriage Return Null Object Memory Exhaustion Remote Denial of Service.Proof of Concept
Note:: Keep an eye on the memory consumption in Task Manager.
This POC has been designed with minimum object usage. This can be made more critical when combined with number of objects. For Example:
using alert function will make it more exhaustive.
Aditya K Sood (c) SecNiche Security.http://www.secniche.org
Version Tested:Official Build 1798
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/0.2.149.29 Safari/525.13
Official Build
Exploit-DB
Dragoon 0.1 - 'lng' Local File Inclusion
exploitdb·2008-04-04
CVE-2008-1798 Dragoon 0.1 - 'lng' Local File Inclusion
Dragoon 0.1 - 'lng' Local File Inclusion
---
Script Name :Dragoon CMS
Download : http://sourceforge.net/project/showfiles.php?group_id=118780
Error :
$cal['lng']=$_GET['lng'];
include('../lang/'.$cal['lng'].'.php');
Vul Code : http://[site]/[path]/forum/kietu/libs/calendrier.php?cal[lng]=[LFI]
# milw0rm.com [2008-04-04]
No writeups or analysis indexed.
2008-04-15
Published