CVE-2008-6926 - OpenCVE

Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpath_show parameter in a GoAhead action. NOTE: this issue only crosses privilege boundaries when security settings such as disable_functions and safe_mode are active, since exploitation requires uploading of executable code to a home directory.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cpanel	Cpanel
Netenberg	Fantastico De Luxe

Configuration 1 [-]

AND

cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*

cpe:2.3:a:netenberg:fantastico_de_luxe:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.netenberg.com/forum/index.php?topic=6832
http://www.securityfocus.com/archive/1/497964/100/0/threaded
http://www.securityfocus.com/archive/1/498519
http://www.securityfocus.com/archive/1/498526
http://www.securityfocus.com/archive/1/498529
http://www.securityfocus.com/archive/1/498529/100/0/threaded
http://www.securityfocus.com/bid/32016
https://exchange.xforce.ibmcloud.com/vulnerabilities/46252
https://www.exploit-db.com/exploits/6897

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-08-10T20:00:00

Updated: 2024-08-07T11:49:02.502Z

Reserved: 2009-08-10T00:00:00

Link: CVE-2008-6926

Vulnrichment

No data.

NVD

Status : Modified

Published: 2009-08-10T20:30:00.453

Modified: 2018-10-11T20:57:49.297

Link: CVE-2008-6926

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-10-31T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpath_show parameter in a GoAhead action. NOTE: this issue only crosses privilege boundaries when security settings such as disable_functions and safe_mode are active, since exploitation requires uploading of executable code to a home directory."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "32016", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/32016"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498526"}, {"name": "20081120 Re: Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498529/100/0/threaded"}, {"name": "cpanel-autoinstall-file-include(46252)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46252"}, {"name": "6897", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/6897"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498519"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.netenberg.com/forum/index.php?topic=6832"}, {"name": "20081120 Re: Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498529"}, {"name": "20081031 Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/497964/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-6926", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpath_show parameter in a GoAhead action. NOTE: this issue only crosses privilege boundaries when security settings such as disable_functions and safe_mode are active, since exploitation requires uploading of executable code to a home directory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "32016", "refsource": "BID", "url": "http://www.securityfocus.com/bid/32016"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498526"}, {"name": "20081120 Re: Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498529/100/0/threaded"}, {"name": "cpanel-autoinstall-file-include(46252)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46252"}, {"name": "6897", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/6897"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498519"}, {"name": "http://www.netenberg.com/forum/index.php?topic=6832", "refsource": "CONFIRM", "url": "http://www.netenberg.com/forum/index.php?topic=6832"}, {"name": "20081120 Re: Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498529"}, {"name": "20081031 Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/497964/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T11:49:02.502Z"}, "title": "CVE Program Container", "references": [{"name": "32016", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/32016"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498526"}, {"name": "20081120 Re: Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498529/100/0/threaded"}, {"name": "cpanel-autoinstall-file-include(46252)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46252"}, {"name": "6897", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/6897"}, {"name": "20081120 Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498519"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.netenberg.com/forum/index.php?topic=6832"}, {"name": "20081120 Re: Re: Cpanel 11 Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498529"}, {"name": "20081031 Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/497964/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-6926", "datePublished": "2009-08-10T20:00:00", "dateReserved": "2009-08-10T00:00:00", "dateUpdated": "2024-08-07T11:49:02.502Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*", "matchCriteriaId": "DCA10E29-1DDD-44D8-A7D9-74BE0315CE4E", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:netenberg:fantastico_de_luxe:*:*:*:*:*:*:*:*", "matchCriteriaId": "54FEA113-975A-4252-9418-64F11FF98E32", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpath_show parameter in a GoAhead action. NOTE: this issue only crosses privilege boundaries when security settings such as disable_functions and safe_mode are active, since exploitation requires uploading of executable code to a home directory."}, {"lang": "es", "value": "Una vulnerabilidad de salto de directorio en el archivo autoinstall4imagesgalleryupgrade.php en el M\u00f3dulo Fant\u00e1stico De Luxe para cPanel, permite a atacantes remotos incluir y ejecutar archivos locales arbitrarios por medio de secuencias de salto de directorio en el par\u00e1metro scriptpath_show en una acci\u00f3n GoAhead. NOTA: este problema solo cruza los l\u00edmites de privilegios cuando las configuraciones de seguridad, como disable_functions y safe_mode, est\u00e1n activas, ya que la explotaci\u00f3n requiere la carga de c\u00f3digo ejecutable en un directorio de inicio."}], "id": "CVE-2008-6926", "lastModified": "2018-10-11T20:57:49.297", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-08-10T20:30:00.453", "references": [{"source": "cve@mitre.org", "url": "http://www.netenberg.com/forum/index.php?topic=6832"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/497964/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/archive/1/498519"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/498526"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/498529"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/498529/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/32016"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46252"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/6897"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}