Ticket #2440 (closed security issue: fixed)
Backup script will restore forged backup
|Reported by:||gOOvER||Owned by:||scitech|
|Priority:||critical||Milestone:||ispCP ω 1.0.7|
|Component:||Backend (Engine)||Version:||ispCP ω 1.0.6|
Backup engine can be used to upload a symlink to an arbitrary file. Of course, that file must be accessible and readable for vuxxxx user resulting a minor issue. Ex: download last available backup unpack create in htdocs a simlink to /etc/passwd upload in backup folder call http://site.tld/symlink_name and you will get passwd.
- Summary changed from Minor security issue to Backup script will restore forged backup