Detections
Analytics

SilverStripe debug_profile Parameter Information Disclosure

medium Nessus Plugin ID 44941

Language:

Synopsis

The remote web server is hosting a PHP application that is affected by an information disclosure vulnerability.

Description

The SilverStripe CMS install hosted on the remote web server is affected by an information disclosure vulnerability because it fails to properly handle the 'debug_profile' parameter of the 'sapphire/main.php' script when running in live mode.

An attacker, exploiting this flaw, can gain sensitive debugging information related to the running application.

Note that the installed version is potentially affected by other vulnerabilities, though Nessus has not tested for those.

Solution

Upgrade to SilverStripe 2.3.6 or later.

See Also

http://www.nessus.org/u?aadffb02

http://open.silverstripe.org/wiki/ChangeLog/2.3.6

Plugin Details

Severity: Medium

ID: 44941

File Name: silverstripe_2_3_6_info_disclosure.nasl

Version: 1.14

Type: remote

Family: CGI abuses

Published: 3/1/2010

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:silverstripe:silverstripe

Required KB Items: www/PHP, www/silverstripe

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No exploit is required

Exploited by Nessus: true

Patch Publication Date: 2/8/2010

Vulnerability Publication Date: 2/24/2010

Reference Information

CVE: CVE-2010-5188

BID: 38394

SECUNIA: 38697