[ advisories | exploits | discussions | news | conventions | security tools | texts & papers ]
 main menu
- feedback
- advertising
- privacy
- FightAIDS
- newsletter
- news
- read forum
- new topic
- search

- meetings list
- recent additions
- add your info
 top 100 sites
- visit top sites
- sign up now
- members

- add your url
- add domain
- search box
- link to us

- our projects
- free email
 m4d network
- security software
- secureroot
- m4d.com
Home : Advisories : PHPix 1.0.X directory traversal vulnerability

Title: PHPix 1.0.X directory traversal vulnerability
Released by: Synnergy
Date: 8th October 2000
Printable version: Click here
Please find attacged PHPix advisory.


        Synnergy Laboratories Advisory SLA-2000-15


       PHPix 1.0.X directory traversal vulnerability


Linux/UNIX with PHPix 1.0.0/1.0.1/1.0.2


 Synnergy Labs has found a flaw within PHPix that allows a user to successfully

 traverse the filesystem on a remote host, allowing arbitary files/folders to be



 PHPix is a Web-based photo album viewer written in PHP. It features automatic

 generation of thumbnails and different resolution files for viewing on the fly.

 PHPix Photo Album is available from http://phpix.org

 Synnergy has recently discovered a flaw within PHPix that allow a remote user to

 traverse a directory as a request to the script using the

 $mode=album&album=_some_dir_variable. It is then possible to read any file

 or folder's contents with priviledges as the httpd.



 The above line if given will output all the directories that are nested within /etc

 directory. Other more sinister content can be revealed from there.


  The vendors have been informed of the bug. It is advised to wait for the next patched

  version of PHPix to be reelased.


        Discovery: pestilence @ synnergy.net


        Synnergy Laboratories may not be held liable for the use or potential

        effects of these programs or advisories, nor the content contained

        within. Use them at your own risk.


        Synnergy Laboratories -  www.synnergy.net (c) 1998-2000

(C) 1999-2000 All rights reserved.