Source Code Disclosure
State Informative (Closed)
Disclosed publicly 2019-01-08T00:44:00.842Z
Reported To
Weakness Information Disclosure
Bounty
Collapse


Timeline
submitted a report to Urban Dictionary .
2017-03-27T05:58:22.737Z

URL http://www.urbandictionary.com/phpinfo.php

Identified Source Code
<?php echo phpinfo(); ?>

An attacker can obtain server-side source code of the web application, which can contain sensitive data - such as database connection strings, usernames and passwords - along with the technical and business logic of the application.

Impact
Depending on the source code, database connection strings, username, and passwords, the internal workings and business logic of application might be revealed. With such information, an attacker can mount the following types of attacks:
Access the database or other data resources. Depending on the privileges of the account obtained from the source code, it may be possible to read, update or delete arbitrary data from the database.
Gain access to password protected administrative mechanisms such as dashboards, management consoles and admin panels, hence gaining full control of the application.
Develop further attacks by investigating the source code for input validation errors and logic vulnerabilities.
Actions to Take
Confirm exactly what aspects of the source code are actually disclosed; due to the limitations of this type of vulnerability, it might not be possible to confirm this in all instances. Confirm this is not an intended functionality.
If it is a file required by the application, change its permissions to prevent public users from accessing it. If it is not, then remove it from the web server.
Ensure that the server has all the current security patches applied.
Remove all temporary and backup files from the web server.
Required Skills for Successful Exploitation
This is dependent on the information obtained from the source code. Uncovering these forms of vulnerabilities does not require high levels of skills. However, a highly skilled attacker could leverage this form of vulnerability to obtain account information from databases or administrative panels, ultimately leading to the control of the application or even the host the application resides on.

Regards,
Frans

  • 0 attachments:
apeckham Activities::BugInformative
2017-03-27T05:59:46.393Z
Thanks for reporting this @linkks but this is a joke page that does not expose any source code.


linkks Activities::Comment
2017-03-27T06:00:18.740Z
@apeckham lol


linkks Activities::AgreedOnGoingPublic
2017-03-27T06:00:34.202Z


apeckham Activities::AgreedOnGoingPublic
2019-01-08T00:44:00.820Z


apeckham Activities::ReportBecamePublic
2019-01-08T00:44:00.858Z