CVE-2007-0200
published 2007-01-11CVE-2007-0200: PHP remote file inclusion vulnerability in template.php in Geoffrey Golliher Axiom Photo/News Gallery (axiompng) 0.8.6 allows remote attackers to execute…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.25%
86.8th percentile
PHP remote file inclusion vulnerability in template.php in Geoffrey Golliher Axiom Photo/News Gallery (axiompng) 0.8.6 allows remote attackers to execute arbitrary PHP code via a URL in the baseAxiomPath parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| geoffrey_golliher | axiom_photo_news_gallery | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Eggdrop/Windrop 1.6.19 - ctcpbuf Remote Crash
exploitdb·2009-05-15·CVSS 6.8
CVE-2009-1789 [MEDIUM] Eggdrop/Windrop 1.6.19 - ctcpbuf Remote Crash
Eggdrop/Windrop 1.6.19 - ctcpbuf Remote Crash
---
eggdrop/windrop remote crash vulnerability
* This message: [ Message body ] [ More options ]
* Related messages: [ Next message ] [ Previous message ] [ Next in thread ] [ Replies ]
From: Thomas Sader
Date: Fri, 15 May 2009 05:54:08 +0200
Affected software
eggdrop (1.6.19 only, not 1.6.19+ctcpfix)
windrop (1.6.19 only, not 1.6.19+ctcpfix)
all eggdrop/windrop versions and packages which apply Nico Goldes
patch for CVE-2007-2807/SA25276 See: [1]
Vulnerability details
The SA25276 patch ([1]) uses strncpy to fix a buffer overflow vulnerability
in src/mod/server.mod/servmsg.c (gotmsg). The last argument is not checked
for being non-negative, but that can happen if ctcpbuf is "". That causes
a remote crash vulnerability to be exploited by
Exploit-DB
Axiom Photo/News Gallery 0.8.6 - Remote File Inclusion
exploitdb·2007-01-09
CVE-2007-0200 Axiom Photo/News Gallery 0.8.6 - Remote File Inclusion
Axiom Photo/News Gallery 0.8.6 - Remote File Inclusion
---
#!/usr/bin/perl
##########################################################################################################
# #
# Axiom 0.8.6 photo gallery (template.php)Remote File Include Vulnerability #
# #
# Bug Found : DeltahackingTEAM discovery:Dr.Pantagon & Exploitet By Dr.Trojan #
# #
# Class: Remote File Include Vulnerability #
# #
# exemplary Exp: http://www.site.com/template.php?baseAxiomPath= #
# #
# Remote: Yes #
# #
# Type: Highly critical #
# #
# Vulnerable Code:include_once($baseAxiomPath . "/themes/sickphp/theme.php"); #
# #
# Download:http://superb-west.dl.sourceforge.net/sourceforge/axiompng/Axiom-0.8.6.tar.gz #
# #
# Ptach : www.Advistory.deltasecurity.ir #
# #
# Bug Found : DeltahackingTEAM Exploitet Discover
No writeups or analysis indexed.
http://osvdb.org/32716http://secunia.com/advisories/23715http://www.attrition.org/pipermail/vim/2007-January/001233.htmlhttp://www.securityfocus.com/bid/21972http://www.vupen.com/english/advisories/2007/0107https://exchange.xforce.ibmcloud.com/vulnerabilities/31372https://www.exploit-db.com/exploits/3108http://osvdb.org/32716http://secunia.com/advisories/23715http://www.attrition.org/pipermail/vim/2007-January/001233.htmlhttp://www.securityfocus.com/bid/21972http://www.vupen.com/english/advisories/2007/0107https://exchange.xforce.ibmcloud.com/vulnerabilities/31372https://www.exploit-db.com/exploits/3108
2007-01-11
Published