Vulnerability Details : CVE-2011-4713
Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the _ID parameter to (1) catalog/shopping_cart.php or (2) catalog/content.php.
Vulnerability category: Directory traversal
Exploit prediction scoring system (EPSS) score for CVE-2011-4713
Probability of exploitation activity in the next 30 days: 6.15%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 93 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-4713
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2011-4713
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-4713
-
http://seclists.org/fulldisclosure/2011/Nov/117
Full Disclosure: osCSS2 "_ID" parameter Local file inclusionExploit
-
http://forums.oscss.org/2-security/oscss2-id-parameter-local-file-inclusion-t1999.html#p11194
-
http://www.securityfocus.com/archive/1/520421
SecurityFocusExploit
-
http://www.rul3z.de/advisories/SSCHADV2011-034.txt
404 Error - Page Not FoundExploit
-
http://www.exploit-db.com/exploits/18099
osCSS2 - '_ID' Local file Inclusion - PHP webapps ExploitExploit
-
http://oscss.svn.sourceforge.net/viewvc/oscss?view=revision&revision=3872
404 Not Found
Products affected by CVE-2011-4713
- cpe:2.3:a:oscss:oscss:*:prerc31:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:2.10:prerc12:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:2.10:rc5:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:2.10:prerc_g1:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:2.10:prerc_f:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:2.10:prerc30:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:1.2.2:rc_c:*:*:*:*:*:*
- cpe:2.3:a:oscss:oscss:1.0:*:*:*:*:*:*:*