Title: PHPDocumentor Remote and Local File Include Vulnerabilities
Severity: HIGH
Description:
phpDocumentor is a Web based application that is used to create professional documentation from php source code.
phpDocumentor is affected by remote and local file include vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data.
The 'FORUM[]' parameter of the 'bug-559668.php' script can facilitate remote and local file include attacks. An attacker can supply the path to a remote script through this variable, or use directory traversal sequences and a local script on the server to execute script code. The 'root_dir' parameter of the 'file_dialog.php' script may be used to carry out remote file include attacks as well.
An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
phpDocumentor 1.3.0 RC4 and prior versions are vulnerable to these issues.
Affected Products:
- phpDocumentor phpDocumentor 1.2.0
- phpDocumentor phpDocumentor 1.2.1
- phpDocumentor phpDocumentor 1.2.2
- phpDocumentor phpDocumentor 1.2.3
- phpDocumentor phpDocumentor 1.3.0 RC3
- phpDocumentor phpDocumentor 1.3.0 RC4
References:
- phpDocumentor: phpDocumentor Home Page
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
