Home > CVE > CVE-2018-20647- PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal Vulnerability

CVE-2018-20647- PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal Vulnerability

CVE-2018-20647-vikas-chaudhary

*******************************************************
# Exploit Title: PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory.
# Date: 30.12.2018
# Site Title :Car Rental – Travel Booking Script
# Vendor Homepage: https://www.phpscriptsmall.com/
# Software Link : https://www.phpscriptsmall.com/product/car-rental-script/
# Category: Web Application
# Version: 2.0.8
# Exploit Author: Vikas Chaudhary
# Contact: https://gkaim.com/contact-us/
# Web: https://gkaim.com/
# Tested on: Windows 10 -Firefox
# CVE-2018-20647.
*****************************************************

## VENDOR SUMMARY :- PHP Scripts Mall Pvt. Ltd. is a professional software selling portal offering wide range of innovative.
PHP Scripts Mall is a leading business and technology firm with 12 years of successful track record
in completion and implementation of numerous projects in various verticals and domains..
It has 300 plus PHP scripts ready to buy.

## Vulnerability Description => A path traversal attack (also known as directory traversal) aims to access files and directories that are stored outside the web root folder. By manipulating variables that reference files with “dot-dot-slash (../)” sequences and its variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on file system including application source code or configuration and critical system files.
****************************************************

_______________________
Proof Of Concept:-
_______________________
1. Go to the site
2- Login page and then Sign Up
3- Create an account using your mail and password.
4- Now spider the Host through Burpsuit.
6-Search a url having image. and past it in browser. Ex-http://travelbookingscript.com/demo/taxibooking_new/images/fb.png
7-Now Edit the url from last , Ex- http://travelbookingscript.com/demo/taxibooking_new/assets/
8- You will find all the Directory of the Server.
___________________________________

Admin
Welcome Sir, .. Myself Vikas Chaudhary , i was interested in general knowledge since childhood , so i thought why not to share my knowledge with you, that's why i created this educational blog. Here you find world wide general knowledge of all Latest technology , Science & History Que , and Mysterious fact of the world. Here you also find knowledge about cyber security. Thanks for visit.. keep supporting....keep Loving
https://www.gkaim.com

Leave a Reply

%d bloggers like this: