CVE-2011-4715 - Vulnerability Details - OpenCVE

Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Koha	Koha Liblime Koha

Configuration 1 [-]

cpe:2.3:a:koha:liblime_koha:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:koha:koha:3.06.00.000:*:*:*:*:*:*:*

Configuration 3 [-]

OR	cpe:2.3:a:koha:koha:3.04.00:::::::*
	cpe:2.3:a:koha:koha:3.04.01:::::::*
	cpe:2.3:a:koha:koha:3.04.02:::::::*
	cpe:2.3:a:koha:koha:3.04.03:::::::*
	cpe:2.3:a:koha:koha:3.04.04:::::::*
	cpe:2.3:a:koha:koha:3.04.05:::::::*
	cpe:2.3:a:koha:koha:3.04.06:::::::*

No data.

References

Link	Providers
http://koha-community.org/koha-3-4-7/#more-2971
http://koha-community.org/koha-3-6-1/#more-2929
http://osvdb.org/77322
http://secunia.com/advisories/46980
http://www.exploit-db.com/exploits/18153
http://www.securityfocus.com/bid/50812
http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153
https://exchange.xforce.ibmcloud.com/vulnerabilities/71478
https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-12-08T19:00:00

Updated: 2024-08-07T00:16:34.139Z

Reserved: 2011-12-08T00:00:00

Link: CVE-2011-4715

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-12-08T19:55:08.187

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-4715

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-11-24T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "50812", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/50812"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://koha-community.org/koha-3-6-1/#more-2929"}, {"tags": ["x_refsource_MISC"], "url": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153"}, {"name": "18153", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/18153"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://koha-community.org/koha-3-4-7/#more-2971"}, {"name": "77322", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/77322"}, {"name": "46980", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/46980"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm"}, {"name": "liblimekoha-opacmain-file-include(71478)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71478"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-4715", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "50812", "refsource": "BID", "url": "http://www.securityfocus.com/bid/50812"}, {"name": "http://koha-community.org/koha-3-6-1/#more-2929", "refsource": "CONFIRM", "url": "http://koha-community.org/koha-3-6-1/#more-2929"}, {"name": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153", "refsource": "MISC", "url": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153"}, {"name": "18153", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/18153"}, {"name": "http://koha-community.org/koha-3-4-7/#more-2971", "refsource": "CONFIRM", "url": "http://koha-community.org/koha-3-4-7/#more-2971"}, {"name": "77322", "refsource": "OSVDB", "url": "http://osvdb.org/77322"}, {"name": "46980", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/46980"}, {"name": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm", "refsource": "CONFIRM", "url": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm"}, {"name": "liblimekoha-opacmain-file-include(71478)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71478"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:16:34.139Z"}, "title": "CVE Program Container", "references": [{"name": "50812", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/50812"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://koha-community.org/koha-3-6-1/#more-2929"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153"}, {"name": "18153", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/18153"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://koha-community.org/koha-3-4-7/#more-2971"}, {"name": "77322", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/77322"}, {"name": "46980", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/46980"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm"}, {"name": "liblimekoha-opacmain-file-include(71478)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71478"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-4715", "datePublished": "2011-12-08T19:00:00", "dateReserved": "2011-12-08T00:00:00", "dateUpdated": "2024-08-07T00:16:34.139Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:koha:liblime_koha:*:*:*:*:*:*:*:*", "matchCriteriaId": "A157B981-C57E-4758-8C99-D072AA00CDC6", "versionEndIncluding": "4.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:koha:koha:3.06.00.000:*:*:*:*:*:*:*", "matchCriteriaId": "C1FF9625-8924-4AFF-BDDD-44ECDD21B652", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:koha:koha:3.04.00:*:*:*:*:*:*:*", "matchCriteriaId": "19846DCB-7BAA-4C48-B879-4ED2133FE055", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.01:*:*:*:*:*:*:*", "matchCriteriaId": "C7890D6D-0BBD-4C78-BE9D-6C6E74CD0B43", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.02:*:*:*:*:*:*:*", "matchCriteriaId": "52BF1075-0D4F-4615-B8DE-785ACB8146E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.03:*:*:*:*:*:*:*", "matchCriteriaId": "BD0160D1-0198-477B-A565-9CA5E627F0BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.04:*:*:*:*:*:*:*", "matchCriteriaId": "B161E81A-158C-4BEF-B1C8-DD8C94D8E48E", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.05:*:*:*:*:*:*:*", "matchCriteriaId": "6D972C41-F258-441A-AE2B-BD82322FA9B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:koha:koha:3.04.06:*:*:*:*:*:*:*", "matchCriteriaId": "18A1B156-CC67-49EA-9311-9F3CBA205C1C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en cgi-bin/koha/mainpage.pl en Koha v3.4 antes de v3.4.7 y v3.6 antes de v3.6.1, y LibLime Koha v4.2 y anteriores permite a atacantes remotos leer archivos de su elecci\u00f3n a trav\u00e9s de .. (punto punto) en la cookie KohaOpacLanguage de cgi-bin/opac/opac-main.pl, relacionado con Output.pm."}], "id": "CVE-2011-4715", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-12-08T19:55:08.187", "references": [{"source": "cve@mitre.org", "url": "http://koha-community.org/koha-3-4-7/#more-2971"}, {"source": "cve@mitre.org", "url": "http://koha-community.org/koha-3-6-1/#more-2929"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/77322"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/46980"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/18153"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/50812"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71478"}, {"source": "cve@mitre.org", "url": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://koha-community.org/koha-3-4-7/#more-2971"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://koha-community.org/koha-3-6-1/#more-2929"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/77322"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/46980"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/18153"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/50812"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.vigasis.com/en/?guncel_guvenlik=LibLime%20Koha%20%3C=%204.2%20Local%20File%20Inclusion%20Vulnerability&lnk=exploits/18153"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71478"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/liblime/LibLime-Koha/commit/8ea6f7bc37d05a9ec25b5afbea011cf9de5f1e49#C4/Output.pm"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}