search

philippe / FrogCMS

Frog CMS simplifies content management by offering an elegant user interface, flexible templating per page, simple user management and permissions, as well as the tools necessary for file management.
GNU General Public License v3.0
160 stars 36 forks source link

monstra CMS V3.0.4 allows unauthorized attacher obtain sensitive information #18

Closed howchen closed 6 years ago

howchen commented 6 years ago

visit url: http://site.com/monstra-master/libraries/Gelato/ErrorHandler/Resources/Views/Errors/exception.php

the response error message obtains sensitive information

PATH | string(955) "C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;D:\install\jdk1.8\bin;D:\install\apache-maven-3.5.3\bin;D:\install\gradle-4.4\bin;D:\install\apache-ant-1.10.4\bin;C:\Python27;C:\Program Files\dotnet\;C:\Program Files\Microsoft SQL Server\130\Tools\Binn\;C:\Program Files\Git\bin;D:\tools\sqlmapproject-sqlmap-a831865;C:\Users\c00450407\AppData\Local\Programs\Python\Python37-32\Scripts\;C:\Users\c00450407\AppData\Local\Programs\Python\Python37-32\;C:\Users\c00450407\AppData\Local\Microsoft\WindowsApps;C:\Users\c00450407\AppData\Local\Programs\Fiddler"
-- | --
SystemRoot | string(10) "C:\Windows"
COMSPEC | string(27) "C:\Windows\system32\cmd.exe"
PATHEXT | string(53) ".COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC"
WINDIR | string(10) "C:\Windows"
SERVER_SIGNATURE | string(0) ""
SERVER_SOFTWARE | string(47) "Apache/2.4.23 (Win32) OpenSSL/1.0.2j PHP/5.4.45"
SERVER_NAME | string(9) "localhost"
SERVER_ADDR | string(9) "127.0.0.1"
SERVER_PORT | string(4) "8899"
REMOTE_ADDR | string(9) "127.0.0.1"
DOCUMENT_ROOT | string(35) "D:/install/phpstudy/PHPTutorial/WWW"
REQUEST_SCHEME | string(4) "http"
CONTEXT_PREFIX | string(0) ""
CONTEXT_DOCUMENT_ROOT | string(35) "D:/install/phpstudy/PHPTutorial/WWW"
SERVER_ADMIN | string(12) "admin@php.cn"
SCRIPT_FILENAME | string(117) "D:/install/phpstudy/PHPTutorial/WWW/monstra-master/libraries/Gelato/ErrorHandler/Resources/Views/Errors/exception.php"