bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/38525.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

52 lines
No EOL
2 KiB
Text
Raw Permalink Blame History

{-} Title => Subrion 3.X.X - Multiple Exploits
{-} Author => bRpsd (skype: vegnox)
{-} Date Release => 23 October, 2015
{-} Vendor => Subrion
Homepage => http://www.subrion.org/
Download => http://tools.subrion.org/get/latest.zip
Vulnerable Versions => 3.X.X
Tested Version => Latest, 3.3.5 on a Wamp Server.
{x} Google Dork:: 1 => "© 2015 Powered by Subrion CMS"
{x} Google Dork:: 2 => "Powered by Subrion CMS"
--------------------------------------------------------------------------------------------------------------------------------
The installation folder never get deleted or protected unless you deleted it yourself.
Which let any unauthorized user access the installation panel and ruin your website in just a few steps ..
--------------------------------------------------------------------------------------------------------------------------------
#######################################################################################
Vulnerability #1 : Reset Administrator Password & Database settings
Risk: High
File Path: http://localhost/cms/install/install/configuration/
#######################################################################################
#######################################################################################
Vulnerability #2 : Arbitrary File Download + Full Path Disclouser
Risk: Medium
File Path: http://localhost/cms/install/install/download/
Method: POST
Parameter (for file contents) : config_content
#######################################################################################
#######################################################################################
Vulnerability #3 : Unauthorized Arbitrary Plugins Installer
Risk: Medium
File Path: http://localhost/cms/install/install/plugins/
#######################################################################################
** SOLUTION ** ! :
Solution for all vulnerabilities is to delete the file located at:
/install/modules/module.install.php
H@PPY H@CK1NG !
Reference in a new issue View git blame Copy permalink