DedeCMS_5.7_Bug
DedeCMS 5.7 Bug
[Suggested description] DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc/inc_archives_functions.php.[Additional Information] Fix suggestions: Modify the application source code to avoid information leakage.The vulnerability was discovered by downloading the program's source code to local and online deployment tests.Location: include/downmix.inc.phpCode:helper('downmix');Rows:13Return error :Fatal error: Call to undefined function helper() in /www/include/downmix.inc.php on line 13Harm:Web site physical path leakage .conditions for execution:Normal access canEdition:DedeCMS 5.7Cause the cause :Call to undefined function helper(), cause path leakageLocation: /dede/inc/inc_archives_functions.phpCode:require_once(DEDEINC.'/dedehttpdown.class.php');Rows:11Return error :Notice: Use of undefined constant DEDEINC - assumed 'DEDEINC' in /www/dede/inc/inc_archives_functions.php on line 11 Warning: require_once(DEDEINC/dedehttpdown.class.php): failed to open stream: No such file or directory in /www/dede/inc/inc_archives_functions.php on line 11 Fatal error: require_once(): Failed opening required 'DEDEINC/dedehttpdown.class.php' (include_path='.;C:\php\pear') in /www/dede/inc/inc_archives_functions.php on line 11Harm:Web site physical path leakage .conditions for execution:Normal access canEdition:DedeCMS 5.7Cause the cause :require_once(): Failed opening required 'DEDEINC/dedehttpdown.class.php' (include_path='.;C:\php\pear') , cause path leakage[VulnerabilityType Other] Physical path leaks[Vendor of Product] dedecms[Affected Product Code Base] dedecms - 5.7[Affected Component] downmix.inc.php , Call to undefined function helper() , Web site physical path leakage[Attack Type] Remote[Impact Information Disclosure] true[Attack Vectors] The vulnerability can be triggered by visiting the URL below: http://127.0.0.1/include/downmix.inc.php http://127.0.0.1/dede/inc/inc_archives_functions.php[Discoverer] kongxin
Last modified 1yr ago