admin/header.php Full Path Disclosure

harryoh / phurl

Automatically exported from code.google.com/p/phurl

0 stars 0 forks source link

admin/header.php Full Path Disclosure #85

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago

If you visit http://site.com/phurl/admin/header.php
under 2.4.0 Beta

You will get an error stating Call to undefined function is_admin_login() in 
/var/www/htdocs/phurl/admin/header on line 14

This leads to full path disclosure vulnerability.

Original issue reported on code.google.com by itspa...@gmail.com on 26 Oct 2010 at 1:18

GoogleCodeExporter commented 9 years ago

This vulnerability is also at
/html/index_form.php
/html/index_done.php
/html/header.php
/html/footer.php

Original comment by itspa...@gmail.com on 26 Oct 2010 at 1:24

GoogleCodeExporter commented 9 years ago

Oops, I overlooked this somehow. Will fix this now, and release 2.4.1 later 
this week to account for any other bugs that may be submitted.

Original comment by hcblahb...@gmail.com on 26 Oct 2010 at 1:26

Changed state: Accepted

GoogleCodeExporter commented 9 years ago

[deleted comment]

GoogleCodeExporter commented 9 years ago

also if you visit index.php?url=blah 
It causes a error stating undefined index: alias /var/www/html/index.php on 
line 16

It creates the short link, but causes a Full Path Disclosure bug

You must have registered globals on

Original comment by itspa...@gmail.com on 26 Oct 2010 at 5:29

GoogleCodeExporter commented 9 years ago

Original comment by hcblahb...@gmail.com on 26 Oct 2010 at 9:14

Changed state: Fixed-but-not-released

GoogleCodeExporter commented 9 years ago

Original comment by hcblahb...@gmail.com on 28 Oct 2010 at 12:10

Changed state: Fixed