CVE-2007-1149
published 2007-03-02CVE-2007-1149: Multiple directory traversal vulnerabilities in LoveCMS 1.4 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the step parameter to…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.59%
88.0th percentile
Multiple directory traversal vulnerabilities in LoveCMS 1.4 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the step parameter to install/index.php or (2) the load parameter to the top-level URI.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lovecms | lovecms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
LoveCMS 1.4 - 'load' Traversal Arbitrary File Access
exploitdb·2007-02-22
CVE-2007-1149 LoveCMS 1.4 - 'load' Traversal Arbitrary File Access
LoveCMS 1.4 - 'load' Traversal Arbitrary File Access
---
source: https://www.securityfocus.com/bid/22675/info
LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue.
An attacker can exploit these issues to steal cookie-based authentication credentials, upload an arbitrary PHP file, execute the file on the vulnerable computer in the context of the webserver process, retrieve arbitrary files from the vulnerable system in the context of the affected application, and delete arbitrary files on the server.
http://www.example.com//ovecms/?load=../../../../../../../../../../etc/passwd%00
Exploit-DB
LoveCMS 1.4 - 'step' Traversal Arbitrary File Access
exploitdb·2007-02-22
CVE-2007-1149 LoveCMS 1.4 - 'step' Traversal Arbitrary File Access
LoveCMS 1.4 - 'step' Traversal Arbitrary File Access
---
source: https://www.securityfocus.com/bid/22675/info
LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue.
An attacker can exploit these issues to steal cookie-based authentication credentials, upload an arbitrary PHP file, execute the file on the vulnerable computer in the context of the webserver process, retrieve arbitrary files from the vulnerable system in the context of the affected application, and delete arbitrary files on the server.
http://www.example.com/lovecms/install/index.php?step=/etc/passwd%00
No writeups or analysis indexed.
http://osvdb.org/33517http://osvdb.org/33518http://securityreason.com/securityalert/2338http://www.securityfocus.com/archive/1/460917/100/0/threadedhttp://www.securityfocus.com/bid/22675http://www.vupen.com/english/advisories/2007/0716http://osvdb.org/33517http://osvdb.org/33518http://securityreason.com/securityalert/2338http://www.securityfocus.com/archive/1/460917/100/0/threadedhttp://www.securityfocus.com/bid/22675http://www.vupen.com/english/advisories/2007/0716
2007-03-02
Published