CVE-2010-2797: Path Traversal
First published: Fri Oct 08 2010(Updated: )
Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Simple CMS | =1.4.1 | |
| Simple CMS | =1.5.3 | |
| Simple CMS | =1.2.4 | |
| Simple CMS | =1.0.7 | |
| Simple CMS | =1.6.2 | |
| Simple CMS | =1.0-beta5 | |
| Simple CMS | =1.1.1 | |
| Simple CMS | =1.1.3.1 | |
| Simple CMS | =1.4-beta2 | |
| Simple CMS | =1.6.5 | |
| Simple CMS | =1.6.7 | |
| Simple CMS | =1.0-beta6 | |
| Simple CMS | =1.0.5 | |
| Simple CMS | =1.6 | |
| Simple CMS | =1.0.6 | |
| Simple CMS | =1.3.1 | |
| Simple CMS | =1.6.4 | |
| Simple CMS | =1.1.4.1 | |
| Simple CMS | =1.2 | |
| Simple CMS | =1.2.1 | |
| Simple CMS | =1.2-beta2 | |
| Simple CMS | =1.7 | |
| Simple CMS | =1.0.8 | |
| Simple CMS | =1.4 | |
| Simple CMS | =1.2.2 | |
| Simple CMS | =1.5.2 | |
| Simple CMS | =1.4-beta1 | |
| Simple CMS | =1.0-beta1 | |
| Simple CMS | =1.6.1 | |
| Simple CMS | =1.0.4 | |
| Simple CMS | =1.0.2 | |
| Simple CMS | =1.2.3 | |
| Simple CMS | =1.5-beta1 | |
| Simple CMS | =1.1-rc1 | |
| Simple CMS | =1.1 | |
| Simple CMS | =1.0-beta2 | |
| Simple CMS | =1.2-rc1 | |
| Simple CMS | =1.0.1 | |
| Simple CMS | =1.1.2 | |
| Simple CMS | =1.3-beta1 | |
| Simple CMS | =1.0-beta3 | |
| Simple CMS | =1.1-rc2 | |
| Simple CMS | =1.6.6 | |
| Simple CMS | =1.3 | |
| Simple CMS | =1.2-beta3 | |
| Simple CMS | =1.2-beta1 | |
| Simple CMS | =1.3-beta2 | |
| Simple CMS | =1.5.1 | |
| Simple CMS | =1.0-beta4 | |
| Simple CMS | =1.0 | |
| Simple CMS | =1.0.3 | |
| Simple CMS | =1.5.4 | |
| Simple CMS | <=1.6.8 | |
| Simple CMS | =1.1-rc3 | |
| Simple CMS | =1.2.5 | |
| Simple CMS | =1.5 | |
| Simple CMS | =1.6.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2010/08/02/8
- http://secunia.com/advisories/40031
- http://www.cmsmadesimple.org/2010/07/3/announcing-cms-made-simple-1-8-1-mankara/
- http://www.openwall.com/lists/oss-security/2010/08/01/2
- http://cross-site-scripting.blogspot.com/2010/07/cms-made-simple-18-local-file-inclusion.html
Frequently Asked Questions
What is the severity of CVE-2010-2797?
CVE-2010-2797 is considered a high severity vulnerability due to its potential to allow remote file inclusion and execution.
How do I fix CVE-2010-2797?
To fix CVE-2010-2797, upgrade to CMS Made Simple version 1.8.1 or later.
What software is affected by CVE-2010-2797?
CVE-2010-2797 affects multiple versions of CMS Made Simple including versions from 1.0 to 1.6.8.
What is the exploit method of CVE-2010-2797?
CVE-2010-2797 can be exploited through a directory traversal attack that sends a crafted request to admin scripts.
Is CVE-2010-2797 easily exploitable?
Yes, CVE-2010-2797 is easily exploitable by attackers who can manipulate input parameters to include arbitrary files.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cmsmadesimple
- canonical/simple cms
- version/simple cms/1.4.1
- version/simple cms/1.5.3
- version/simple cms/1.2.4
- version/simple cms/1.0.7
- version/simple cms/1.6.2
- version/simple cms/1.0-beta5
- version/simple cms/1.1.1
- version/simple cms/1.1.3.1
- version/simple cms/1.4-beta2
- version/simple cms/1.6.5
- version/simple cms/1.6.7
- version/simple cms/1.0-beta6
- version/simple cms/1.0.5
- version/simple cms/1.6
- version/simple cms/1.0.6
- version/simple cms/1.3.1
- version/simple cms/1.6.4
- version/simple cms/1.1.4.1
- version/simple cms/1.2
- version/simple cms/1.2.1
- version/simple cms/1.2-beta2
- version/simple cms/1.7
- version/simple cms/1.0.8
- version/simple cms/1.4
- version/simple cms/1.2.2
- version/simple cms/1.5.2
- version/simple cms/1.4-beta1
- version/simple cms/1.0-beta1
- version/simple cms/1.6.1
- version/simple cms/1.0.4
- version/simple cms/1.0.2
- version/simple cms/1.2.3
- version/simple cms/1.5-beta1
- version/simple cms/1.1-rc1
- version/simple cms/1.1
- version/simple cms/1.0-beta2
- version/simple cms/1.2-rc1
- version/simple cms/1.0.1
- version/simple cms/1.1.2
- version/simple cms/1.3-beta1
- version/simple cms/1.0-beta3
- version/simple cms/1.1-rc2
- version/simple cms/1.6.6
- version/simple cms/1.3
- version/simple cms/1.2-beta3
- version/simple cms/1.2-beta1
- version/simple cms/1.3-beta2
- version/simple cms/1.5.1
- version/simple cms/1.0-beta4
- version/simple cms/1.0
- version/simple cms/1.0.3
- version/simple cms/1.5.4
- version/simple cms/1.6.8
- version/simple cms/1.1-rc3
- version/simple cms/1.2.5
- version/simple cms/1.5
- version/simple cms/1.6.3