Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

DedeCmsV5.6 Carbuyaction Fileinclude

By kannthu

High
Vidoc logoVidoc Module
#dedecms
Description

What is the "DedeCmsV5.6 Carbuyaction Fileinclude?"

The "DedeCmsV5.6 Carbuyaction Fileinclude" module is a test case designed to detect a vulnerability in the DedeCMS software. This vulnerability allows remote attackers to retrieve the content of locally stored files through the "carbuyaction.php" endpoint. The severity of this vulnerability is classified as high.

Author: pikpikcu

Impact

If exploited, this vulnerability can lead to unauthorized access to sensitive files stored on the server. Attackers can potentially retrieve confidential information or gain deeper insights into the system's configuration, which may further compromise the security of the application.

How the module works?

The module sends an HTTP GET request to the "/plus/carbuyaction.php?dopost=return&code=../../" endpoint. It includes a specific cookie with the "code" parameter set to "cod". The module then applies two matching conditions to determine if the vulnerability exists:

    - The response body must contain the phrase "Cod::respond()". - The HTTP response status code must be 200.

If both conditions are met, the module reports the vulnerability.

Reference:

- https://www.cnblogs.com/milantgh/p/3615986.html

Metadata:

max-request: 1

verified:

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/plus/carbuyaction.p...
Headers

Cookie: code=cod

Matching conditions
word: Cod::respond()and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability