OSVDB ID: 63554

Title: Nodesforum erase_user_data.php _nodesforum_path_from_here_to_nodesforum_folder Parameter Remote File Inclusion

Info

Disclosure

Apr 05, 2010

Discovery

Unknown

Dates

Exploit

Apr 05, 2010

Solution

Aug 05, 2009

Description

Nodesforum contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'erase_user_data.php' script not properly sanitizing user input supplied to the '_nodesforum_path_from_here_to_nodesforum_folder' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Vendor Verified, Third-party Verified
OSVDB: Web Related

Solution

Upgrade to version 1.047 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Nodesforum

1.045

References

Exploit Database: 12047
CVE ID: 2010-1351 (see also: NVD)
Secunia Advisory ID: 39311
Bugtraq ID: 39359
ISS X-Force ID: 57517
Related OSVDB ID: 63555
Vendor URL: http://home.nodesforum.com/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/63554