CVE-2007-2021
published 2007-04-12CVE-2007-2021: Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the (1)…
PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.23%
65.1th percentile
Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lang_path parameter to third_party/phpmailer/class.phpmailer.php or the (2) get_plugin_file_path parameter to third_party/smarty/libs/plugins/function.html_checkboxes.php. NOTE: the affected files might be from other software packages, so this might not be a vulnerability in Lore itself. NOTE: (1) might be the same issue as CVE-2006-5734.4.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpmailer | phpmailer | >= 0 < 5.2.0 | 5.2.0 |
| pineapple_technologies | lore | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
ghsa7.5HIGH
osv7.5HIGH
vendor_oracle3.7LOW
vendor_redhat3.7LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
PHPMailer Local file inclusion
ghsa·2024-02-02·CVSS 7.5
CVE-2006-5734 [HIGH] PHPMailer Local file inclusion
PHPMailer Local file inclusion
### Impact
Arbitrary local file inclusion via the `$lang` property, remotely exploitable if host application passes unfiltered user data into that property. The 3 CVEs listed are applications that used PHPMailer that were vulnerable to this problem.
### Patches
It's not known exactly when this was fixed in the host applications, but it was fixed in PHPMailer 5.2.0.
### Workarounds
Filter and validate user-supplied data before use.
### References
https://nvd.nist.gov/vuln/detail/CVE-2006-5734
https://nvd.nist.gov/vuln/detail/CVE-2007-3215
https://nvd.nist.gov/vuln/detail/CVE-2007-2021
Example exploit: https://www.exploit-db.com/exploits/14893
### For more information
If you have any questions or comments about this advisory:
* Open a private issue in [the
OSV
PHPMailer Local file inclusion
osv·2024-02-02·CVSS 7.5
CVE-2006-5734 [HIGH] PHPMailer Local file inclusion
PHPMailer Local file inclusion
### Impact
Arbitrary local file inclusion via the `$lang` property, remotely exploitable if host application passes unfiltered user data into that property. The 3 CVEs listed are applications that used PHPMailer that were vulnerable to this problem.
### Patches
It's not known exactly when this was fixed in the host applications, but it was fixed in PHPMailer 5.2.0.
### Workarounds
Filter and validate user-supplied data before use.
### References
https://nvd.nist.gov/vuln/detail/CVE-2006-5734
https://nvd.nist.gov/vuln/detail/CVE-2007-3215
https://nvd.nist.gov/vuln/detail/CVE-2007-2021
Example exploit: https://www.exploit-db.com/exploits/14893
### For more information
If you have any questions or comments about this advisory:
* Open a private issue in [the
GHSA
GHSA-x3xg-mc2f-hj3q: Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-2021 [HIGH] GHSA-x3xg-mc2f-hj3q: Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in
Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lang_path parameter to third_party/phpmailer/class.phpmailer.php or the (2) get_plugin_file_path parameter to third_party/smarty/libs/plugins/function.html_checkboxes.php. NOTE: the affected files might be from other software packages, so this might not be a vulnerability in Lore itself. NOTE: (1) might be the same issue as CVE-2006-5734.4.
Red Hat
mysql: C API unspecified vulnerability (CPU Jan 2021)
vendor_redhat·2021-01-19·CVSS 3.7
CVE-2021-2007 [LOW] mysql: C API unspecified vulnerability (CPU Jan 2021)
mysql: C API unspecified vulnerability (CPU Jan 2021)
Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).
Package: mysql (Red Hat Enterprise Linux 6) - Out of support scope
Package: mariadb-galera (Red Hat OpenStack Platform 10 (Newton)) - Out of support scope
Package: mariadb (Red Hat OpenStack
Oracle
Oracle Oracle MySQL Risk Matrix: C API — CVE-2021-2007
vendor_oracle·2021-01-15·CVSS 3.7
CVE-2021-2007 [LOW] Oracle Oracle MySQL Risk Matrix: C API — CVE-2021-2007
Oracle Oracle MySQL Risk Matrix: C API vulnerability
CVE: CVE-2021-2007
CVSS: 3.7
Protocol: MySQL Protocol
Remote exploit: Yes
Affected versions: Network
Advisory: cpujan2021 (JAN 2021)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2007-04-12
Published