CVE-2014-5258
published 2014-11-06CVE-2014-5258: Directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .…
PriorityP336medium4CVSS 2.0
AVNACLAuSCPINAN
EXPLOIT
EPSS
19.76%
97.1th percentile
Directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webedition | webedition_cms | <= 6.3.8.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor HTTP GET requests to /webEdition/showTempFile.php containing directory traversal sequences (../) in the 'file' parameter, especially paths targeting sensitive files like /etc/passwd. ↗
- →A successful exploitation response will return HTTP 200 with content matching 'root:.*:0:0:' (passwd file contents), indicating arbitrary file read. ↗
- →Exploitation requires valid authenticated credentials; look for authenticated sessions making traversal requests to showTempFile.php. ↗
- →Use Shodan query cpe:"cpe:2.3:a:webedition:webedition_cms" to identify exposed webEdition CMS instances for proactive scanning. ↗
- ·Exploitation requires an authenticated session; unauthenticated attackers cannot exploit this vulnerability directly. ↗
- ·The vulnerability affects webEdition CMS versions up to and including 6.3.8.0 (SVN-Revision: 6985); versions 6.3.9.0 Beta and later are patched. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
exploitdb·2014-09-24·CVSS 4.0
CVE-2014-5258 [MEDIUM] webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
---
Advisory ID: HTB23227
Product: webEdition
Vendor: webEdition e.V.
Vulnerable Version(s): 6.3.8.0 (SVN-Revision: 6985) and probably prior
Tested Version: 6.3.8.0 (SVN-Revision: 6985)
Advisory Publication: August 6, 2014 [without technical details]
Vendor Notification: August 6, 2014
Vendor Patch: September 4, 2014
Public Disclosure: September 17, 2014
Vulnerability Type: Path Traversal [CWE-22]
CVE Reference: CVE-2014-5258
Risk Level: Medium
CVSSv2 Base Score: 4 (AV:N/AC:L/Au:S/C:P/I:N/A:N)
Solution Status: Fixed by Vendor
Discovered and Provided: High-Tech Bridge Security Research Lab ( https://www.htbridge.com/advisory/ )
Advisory Details:
High-Tech Bridge Security Research Lab discovered vulnerability in webEdition, w
Nuclei
webEdition 6.3.8.0 - Directory Traversal
nuclei·CVSS 4.0
CVE-2014-5258 [MEDIUM] webEdition 6.3.8.0 - Directory Traversal
webEdition 6.3.8.0 - Directory Traversal
A directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Template:
id: CVE-2014-5258
info:
name: webEdition 6.3.8.0 - Directory Traversal
author: daffainfo
severity: medium
description: A directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
impact: |
An attacker can read sensitive files on the server, potentially leading to unauthorized access or information disclosure.
remediation: |
Upgrade to a patched version of webEdition or apply the necessary security patches to fix t
http://packetstormsecurity.com/files/128301/webEdition-6.3.8.0-Path-Traversal.htmlhttp://www.securityfocus.com/archive/1/533465/100/0/threadedhttp://www.webedition.org/de/aktuelles/webedition-cms/webEdition-6.3.9-Beta-erschienenhttp://www.webedition.org/de/webedition-cms/versionshistorie/webedition-6/version-6.3.9.0https://www.htbridge.com/advisory/HTB23227http://packetstormsecurity.com/files/128301/webEdition-6.3.8.0-Path-Traversal.htmlhttp://www.securityfocus.com/archive/1/533465/100/0/threadedhttp://www.webedition.org/de/aktuelles/webedition-cms/webEdition-6.3.9-Beta-erschienenhttp://www.webedition.org/de/webedition-cms/versionshistorie/webedition-6/version-6.3.9.0https://www.htbridge.com/advisory/HTB23227
2014-11-06
Published