Full Disclosure mailing list archives
Claroline <= 1.7.4 (scormExport.inc.php) Remote Code Execution Exploit by rgod
From: "Siegfried" <admin () zone-h fr>
Date: Fri, 31 Mar 2006 11:57:56 +0200 (CEST)
I just wanted to comment rgod's Claroline <= 1.7.4 (scormExport.inc.php) Remote Code Execution Exploit: http://www.milw0rm.com/exploits/1627 http://retrogod.altervista.org/claroline_174_incl_xpl.html http://secunia.com/advisories/19461/ The file inclusion vulnerability just affects the 1.7 branch, however when installing claroline it says to turn register_globals on and older versions were _just_ working with register_globals set to on (if i remember well), so huh.. many are probably vuln. About the xss, it is an xss in the php error message, there are many php functions returning errors without filtering them, anybody noted that? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Claroline <= 1.7.4 (scormExport.inc.php) Remote Code Execution Exploit by rgod Siegfried (Mar 31)