[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
HTB22907: Directory Traversal in Collabtive
Vulnerability ID: HTB22907
Vendor: Open Dynamics ( http://collabtive.o-dyn.de/ )
Vulnerable Version: 0.6.5 and probably prior versions
Vendor Notification: 17 March 2011
Vulnerability Type: Directory Traversal Vulnerability
Risk level: Medium
Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/)
An attacker can disclose arbitrary image file content.
The vulnerability exists due to failure in the "thumb.php" script to properly sanitize user-supplied input in "pic" variable.
Attacker can use browser to exploit this vulnerability. The following PoC is available: