Exploitation Summary
EIP tracks 1 public exploit for CVE-2019-25258. PoCs published by LiquidWorm.
AI-analyzed exploit summary The exploit demonstrates multiple directory traversal vulnerabilities in LogicalDOC Enterprise 7.7.4 and earlier versions. By manipulating the 'suffix' and 'fileVersion' parameters, an attacker can read arbitrary files from the local system, as shown in the PoC requests for 'win.ini' and '/etc/passwd'.
Description
LogicalDOC Enterprise 7.7.4 contains multiple post-authentication file disclosure vulnerabilities that allow attackers to read arbitrary files through unverified 'suffix' and 'fileVersion' parameters. Attackers can exploit directory traversal techniques in /thumbnail and /convertpdf endpoints to access sensitive system files like win.ini and /etc/passwd by manipulating path traversal sequences.
Exploits (1)
The exploit demonstrates multiple directory traversal vulnerabilities in LogicalDOC Enterprise 7.7.4 and earlier versions. By manipulating the 'suffix' and 'fileVersion' parameters, an attacker can read arbitrary files from the local system, as shown in the PoC requests for 'win.ini' and '/etc/passwd'.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N