CVE-2008-5765
published 2008-12-30CVE-2008-5765: WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file…
PriorityP339medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
5.91%
92.3th percentile
WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for data/usr.txt.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 2500mhz | worksimple | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ASPilot Pilot Cart 7.3 - Multiple Vulnerabilities
exploitdb·2010-11-07·CVSS 7.5
CVE-2010-4632 [HIGH] ASPilot Pilot Cart 7.3 - Multiple Vulnerabilities
ASPilot Pilot Cart 7.3 - Multiple Vulnerabilities
---
# Title: [ASPilot Pilot Cart 7.3 multiple vulnerabilities]
# Date: [07.11.2010]
# Author: [Ariko-Security]
# Software Link: [http://www.pilotcart.com]
# Version: [7.3]
# CVE Reference: CVE-2008-2688 (only 1 SQL injection)
# EDB-ID: 5765 (only 1 SQL injection)
# Ariko-Security: Security Audits , Audyt bezpieczeństwa
# Advisory: 745/2010
============ { Ariko-Security - Advisory #1/11/2010 } =============
ASPilot Pilot Cart 7.3 multiple vulnerabilities
Vendor's Description of Software and demo:
# http://www.pilotcart.com
Dork:
# Powered by Pilot Cart V.7.3
Application Info:
# Name: Pilot Cart
# version last 7.3
Vulnerability Info:
# Type: multiple SQL injections, multiple XSS, multiple iFrame injections, multiple link injections
Exploit-DB
WorkSimple 1.2.1 - Remote File Inclusion / Sensitive Data Disclosure
exploitdb·2008-12-15
CVE-2008-5765 WorkSimple 1.2.1 - Remote File Inclusion / Sensitive Data Disclosure
WorkSimple 1.2.1 - Remote File Inclusion / Sensitive Data Disclosure
---
[START]
#########################################################################################
[0x01] Informations:
Script : WorkSimple 1.2.1
Download : http://www.hotscripts.com/jump.php?listing_id=85112&jump_type=1
Vulnerability : Remote File Inclusion / Sensitive Data Disclosure
Author : Osirys
Contact : osirys[at]live[dot]it
Notes : Proud to be Italian
Greets: : XaDoS, x0r, emgent, Jay
#########################################################################################
[0x02] Bug:[Remote File Inclusion]
######
Bugged file is: /[path]/calendar.php
[CODE]
[/CODE]
$lang variable is not declared, I thought it was declared on conf.php, but it's not.
So we can set the $lang value directly from GET.
F
No writeups or analysis indexed.
http://osvdb.org/50725http://secunia.com/advisories/33163http://www.securityfocus.com/bid/32849https://exchange.xforce.ibmcloud.com/vulnerabilities/47368https://www.exploit-db.com/exploits/7481http://osvdb.org/50725http://secunia.com/advisories/33163http://www.securityfocus.com/bid/32849https://exchange.xforce.ibmcloud.com/vulnerabilities/47368https://www.exploit-db.com/exploits/7481
2008-12-30
Published