CVE-2015-3648
published 2015-06-09CVE-2015-3648: Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary…
PriorityP354high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.08%
94.1th percentile
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the defaultlanguage parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| montala | resourcespace | <= 7.1.6513 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Look for GET requests to /pages/setup.php with a 'defaultlanguage' parameter containing dot-dot sequences (../ or URL-encoded %2f..%2f) indicating directory traversal / LFI attempts. ↗
- →A successful exploitation response (HTTP 200) will contain the string matching 'root:.*:0:0:' in the body, indicating /etc/passwd was read and returned. ↗
- →The canonical exploit payload uses five URL-encoded traversal steps: ..%2f..%2f..%2f..%2f..%2fetc%2fpasswd in the defaultlanguage parameter. ↗
- ·Vulnerability affects ResourceSpace versions prior to 7.2.6727 only; patched versions are not exploitable via this vector. ↗
- ·The vulnerability is unauthenticated (Au:N) and network-accessible (AV:N), meaning no credentials are required to exploit it remotely. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
ResourceSpace - Local File inclusion
nuclei·CVSS 7.5
CVE-2015-3648 [HIGH] ResourceSpace - Local File inclusion
ResourceSpace - Local File inclusion
ResourceSpace is prone to a local file-inclusion vulnerability because it fails to sufficiently sanitize user-supplied input.
Template:
id: CVE-2015-3648
info:
name: ResourceSpace - Local File inclusion
author: pikpikcu
severity: high
description: ResourceSpace is prone to a local file-inclusion vulnerability because it fails to sufficiently sanitize user-supplied input.
impact: |
An attacker can exploit this vulnerability to read sensitive files, execute arbitrary code, or launch further attacks.
remediation: |
Upgrade to the latest version of ResourceSpace to fix the local file inclusion vulnerability.
reference:
- https://vulners.com/cve/CVE-2015-3648/
- http://svn.montala.com/websvn/revision.php?repname=ResourceSpace&path=%2F&rev=6640&peg=6738
-
http://packetstormsecurity.com/files/132142/ResourceSpace-7.1.6513-Local-File-Inclusion.htmlhttp://svn.montala.com/websvn/revision.php?repname=ResourceSpace&path=%2F&rev=6640&peg=6738http://www.securityfocus.com/archive/1/535669/100/0/threadedhttp://www.securityfocus.com/bid/75019https://www.htbridge.com/advisory/HTB23258http://packetstormsecurity.com/files/132142/ResourceSpace-7.1.6513-Local-File-Inclusion.htmlhttp://svn.montala.com/websvn/revision.php?repname=ResourceSpace&path=%2F&rev=6640&peg=6738http://www.securityfocus.com/archive/1/535669/100/0/threadedhttp://www.securityfocus.com/bid/75019https://www.htbridge.com/advisory/HTB23258
2015-06-09
Published