1. Skip to navigation
  2. Skip to content
  3. Skip to secondary-content

Where You Are

  1. Home
  2. Security
  3. Security Lab
  4. Latest Threats
  5. Vulnerability Descriptions
  6. SA200900216

PostNuke PNphpBB2 Module Multiple File Inclusion Vulnerabilities

Report ID: SA200900216
Source: Unknown
Date of Discovery: 07.01.2009
Criticality: Moderate
Affects:
PNphpBB2 1.x (module for PostNuke)
Compromise From: From remote
Compromise Type: Exposure of system information
Exposure of sensitive information

Summary

Some vulnerabilities in the PNphpBB2 module for PostNuke, which can be exploited by malicious people to disclose sensitive information.

Detailed Description

Input passed to the "ModName" parameter in "modules/PNphpBB2/admin/admin_words.php", "modules/PNphpBB2/admin/admin_groups_reapir.php", "modules/PNphpBB2/admin/admin_smilies.php", "modules/PNphpBB2/admin/admin_ranks.php", "modules/PNphpBB2/admin/admin_styles.php", and "modules/PNphpBB2/admin/admin_users.php" is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks and URL-encoded NULL bytes.

These vulnerabilities are confirmed in version 1.2i. Other versions may also be affected.

Solution

Edit the source code to ensure that input is properly verified.