View Issue Details

IDProjectCategoryView StatusLast Update
0005833OXID eShop (all versions)4.04. Securitypublic2016-01-27 10:28
Reporterhendrikfreytag 
PriorityhighSeveritymajorReproducibilityalways
Status resolvedResolutionfixed 
Product Version4.8.7 / 5.1.7 
Target VersionFixed in Version4.9.7 / 5.2.7 
Summary0005833: It is possible to get Shop Version number when calling certain urls
DescriptionYou should not be able to call getshopversion, getshopedition and getshoprevision of the controller start. This is done by a htaccess rule. But it is possible to go around that. In URLs you can replace character by it's hexadecimal ascii value.

For example: http://www.example.com/index.php?cl=start&fnc=%67etshopversion

The htaccess rule will not recognize that, but the url will be called and you get the version.
TagsNo tags attached.
ThemeAzure
BrowserAll
PHP VersionNot defined
MySQL VersionNot defined

Activities

hendrikfreytag

2014-07-23 14:42

reporter  

bug.png (89,287 bytes)
bug.png (89,287 bytes)

hendrikfreytag

2015-10-05 13:55

reporter   ~0011239

Call http://demoshop.oxid-esales.com/professional-edition/?fnc=%67etshopversion

It will redirect to http://demoshop.oxid-esales.com/professional-edition/index.php?cl=4.9.5

This will redirect to http://demoshop.oxid-esales.com/professional-edition/index.php?cl=start&redirected=1

You have to use something in the browser which can show you all redirects, because otherwise you won't see the first redirect. (e.g. in chrome hit F12 to use the developer tools)