Trending

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal-CVE-2019-7436

cve-2019-7436-vikas-chaudhary


*******************************************************************************************
# Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory
# Date: 30.12.2018
# Site Title : Opensource Classified Ads Script
# Vendor Homepage: https://www.phpscriptsmall.com/
#Vendor Software: https://www.phpscriptsmall.com/product/professional-classified-ads-script/
# Software Link: 198.38.86.159/~classic/
# Category: Web Application
# Version: 3.2.2
# Exploit Author: Vikas Chaudhary
# Contact: https://www.facebook.com/profile.php?id=100011287630308
# Web: https://gkaim.com/
# Tested on: Windows 10 -Firefox
# CVE-2019-7436
*****************************************************************************************
Vulnerability Description => A path traversal attack (also known as directory traversal) aims to access files and directories that are stored outside the web root folder. By manipulating variables that reference files with “dot-dot-slash (../)” sequences and its variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on file system including application source code or configuration and critical system files.
****************************************************************************************

Proof of Concept:-
————————–
1. Go to the site (198.38.86.159/~classic/ ) .
2- Click on Register => and then fill the forms.
3-Goto your mail and Verify it.
4-Come back to site and Login using your Verified Mail and Password.
5-Open Burpsuit and intercept the data.
6-Now Pick any url contains wp-content ex (http://198.38.86.159/~classic/admin/uploads/classi.jpg )
7- Now show response in browser and delete the last portion of url (after last / ) Ex- http://198.38.86.159/~classic/admin/uploads/
8- You will get all The file lists
** Also can check it by intruder .**
***************************************************************************************

7 thoughts on “PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal-CVE-2019-7436

  1. I am happy that many students have received the right Math assignment help through you. I am in my third year in college and I have not had a chance to get such help. Since I have come across your post, I hope I will find the right Math homework help through you. My only obstacle would be finances. I hope that you are pocket friendly or should I call it student-friendly

  2. I have just gone through your website and I am highly convinced that you can offer quality economics homework help. I have seen several
    samples and the quality looks good. If the samples are done by you then I am more than willing to hire you for my assignment. I just hope that anytime I contact you for aneconomics homework help you will be available to help because some of these assignments are always very urgent.

  3. I need a Statistics Homework Help expert to handle my assignment on median regression. This model is just the same, and the quantile regression, which is estimating the median. The assignment requires you to fit the model in STATA. I hope that you are in a position to solve it. I won’t accept anything other than a grade A. I will also need Statistics Assignment Help in other topics but first finish this one.

Comment Please