CVE-2013-5688
AjaXplorer <= 5.0.2 - Authenticated Path Traversal and Arbitrary File Write via Null Byte in File Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-5688.
AI-analyzed exploit summary The advisory details two vulnerabilities in AjaXplorer: a path traversal (CVE-2013-5688) allowing arbitrary file reads via null-byte injection, and an arbitrary file upload (CVE-2013-5689) enabling remote code execution. It includes HTTP request examples and remediation steps.
Description
Multiple directory traversal vulnerabilities in index.php in AjaXplorer 5.0.2 and earlier allow remote authenticated users to read arbitrary files via a ../%00 (dot dot backslash encoded null byte) in the file parameter in a (1) download or (2) get_content action, or (3) upload arbitrary files via a ../%00 (dot dot backslash encoded null byte) in the dir parameter in an upload action.
Exploits (1)
The advisory details two vulnerabilities in AjaXplorer: a path traversal (CVE-2013-5688) allowing arbitrary file reads via null-byte injection, and an arbitrary file upload (CVE-2013-5689) enabling remote code execution. It includes HTTP request examples and remediation steps.