CVE-2012-3521
published 2014-06-13CVE-2012-3521: Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot…
PriorityP431medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
3.17%
86.4th percentile
Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | geshi | < geshi 1.0.8.4-2 (bookworm) | geshi 1.0.8.4-2 (bookworm) |
| geshi | geshi | >= 0 < 1.0.8.11 | 1.0.8.11 |
| qbnz | geshi | <= 1.0.8.10 | — |
| qbnz | geshi | — | — |
| qbnz | geshi | — | — |
| qbnz | geshi | — | — |
| qbnz | geshi | — | — |
| qbnz | geshi | — | — |
| qbnz | geshi | — | — |
| qbnz | geshi | >= 0 < 1.0.8.4-2 | 1.0.8.4-2 |
| qbnz | geshi | >= 0 < 1.0.8.4-2 | 1.0.8.4-2 |
| qbnz | geshi | >= 0 < 1.0.8.4-2 | 1.0.8.4-2 |
| qbnz | geshi | >= 0 < 1.0.8.4-2 | 1.0.8.4-2 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GeSHi vulnerable to Directory Traversal
ghsa·2022-05-17
CVE-2012-3521 [HIGH] CWE-22 GeSHi vulnerable to Directory Traversal
GeSHi vulnerable to Directory Traversal
Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.
OSV
GeSHi vulnerable to Directory Traversal
osv·2022-05-17
CVE-2012-3521 [HIGH] GeSHi vulnerable to Directory Traversal
GeSHi vulnerable to Directory Traversal
Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.
OSV
CVE-2012-3521: Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1
osv·2014-06-13·CVSS 5.0
CVE-2012-3521 [MEDIUM] CVE-2012-3521: Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1
Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.
Debian
CVE-2012-3521: geshi - Multiple directory traversal vulnerabilities in the cssgen contrib module in GeS...
vendor_debian·2012·CVSS 5.0
CVE-2012-3521 [MEDIUM] CVE-2012-3521: geshi - Multiple directory traversal vulnerabilities in the cssgen contrib module in GeS...
Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.
Scope: local
bookworm: resolved (fixed in 1.0.8.4-2)
bullseye: resolved (fixed in 1.0.8.4-2)
forky: resolved (fixed in 1.0.8.4-2)
sid: resolved (fixed in 1.0.8.4-2)
trixie: resolved (fixed in 1.0.8.4-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module
bugzilla·2012-08-21·CVSS 5.0
CVE-2012-3521 [MEDIUM] CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module
CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module
A directory traversal and information disclosure (local file inclusion) flaws were found in the cssgen contrib module (application to generate custom CSS files) of GeSHi, a generic syntax highlighter, performed sanitization of 'geshi-path' and 'geshi-lang-path' HTTP GET / POST variables. A remote attacker could provide a specially-crafted URL that, when visited could lead to local file system traversal or, potentially, ability to read content of any local file, accessible with the privileges of the user running the webserver.
References:
[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685324
Upstream patch:
[2] http://geshi.svn.sourceforge.net/viewvc/geshi?vie
Bugzilla
CVE-2012-3521 CVE-2012-3522 php-geshi: Various flaws [fedora-all]
bugzilla·2012-08-21·CVSS 5.0
CVE-2012-3521 [MEDIUM] CVE-2012-3521 CVE-2012-3522 php-geshi: Various flaws [fedora-all]
CVE-2012-3521 CVE-2012-3522 php-geshi: Various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=8504
Bugzilla
CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module [epel-all]
bugzilla·2012-08-21·CVSS 5.0
CVE-2012-3521 [MEDIUM] CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module [epel-all]
CVE-2012-3521 php-geshi: Remote directory traversal and information disclosure (local file inclusion) in the contrib module [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105247.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2013-May/105273.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2013-May/105317.htmlhttp://sourceforge.net/p/geshi/code/2507/http://www.openwall.com/lists/oss-security/2012/08/21/11https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685324http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105247.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2013-May/105273.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2013-May/105317.htmlhttp://sourceforge.net/p/geshi/code/2507/http://www.openwall.com/lists/oss-security/2012/08/21/11https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685324
2014-06-13
Published