givanz Vvveb Information Disclosure Vulnerability in Configuration File Handler

A vulnerability in givanz Vvveb versions through 1.0.7.2 allows remote attackers to access sensitive configuration files and system information. The issue arises from inadequate access controls in the default installation, enabling unauthorized retrieval of files such as composer.json, docker-compose.yaml, php.ini, and various nginx configuration files. Notably, the docker-compose.yaml file contains database credentials that could be reused for admin panel access or other services.

Impact

Exploitation of this vulnerability leads to unauthorized access to sensitive information, including configuration files and system data. The exposed database credentials in the docker-compose.yaml file could be used to access the database or admin panel, posing an additional risk.

Reproduction

The vulnerability can be reproduced by sending direct HTTP requests to the server hosting Vvveb CMS. The lack of proper access controls allows for the retrieval of sensitive files from various directories, including the public directory and specific admin-related paths.

Remediation

The project maintainer has acknowledged the vulnerability and stated that it has been fixed in the latest version. Users are advised to update to the patched version.