Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "DedeCmsV5.6 Carbuyaction Fileinclude" module is a test case designed to detect a vulnerability in the DedeCMS software. This vulnerability allows remote attackers to retrieve the content of locally stored files through the "carbuyaction.php" endpoint. The severity of this vulnerability is classified as high.
Author: pikpikcu
If exploited, this vulnerability can lead to unauthorized access to sensitive files stored on the server. Attackers can potentially retrieve confidential information or gain deeper insights into the system's configuration, which may further compromise the security of the application.
The module sends an HTTP GET request to the "/plus/carbuyaction.php?dopost=return&code=../../" endpoint. It includes a specific cookie with the "code" parameter set to "cod". The module then applies two matching conditions to determine if the vulnerability exists:
Cod::respond()
".
- The HTTP response status code must be 200.
If both conditions are met, the module reports the vulnerability.
Reference:- https://www.cnblogs.com/milantgh/p/3615986.html
Metadata:max-request: 1
verified:
Cookie: code=cod