CVE-2007-2093
published 2007-04-18CVE-2007-2093: Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) 1.0 allows remote attackers to inject arbitrary PHP code…
PriorityP353high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
45.69%
98.6th percentile
Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) 1.0 allows remote attackers to inject arbitrary PHP code into posts.txt via the message parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| limesoft | limesoft_guestbook | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor POST requests to index.php containing PHP tags (e.g., <?php) in the 'message' parameter, which indicates an attempted code injection into posts.txt. ↗
- →Alert on web server file writes to posts.txt followed by an include/require of that file, as the application includes posts.txt causing injected PHP to execute. ↗
- →Inspect the contents of posts.txt on disk for embedded PHP code tags as evidence of successful exploitation. ↗
- ·The vulnerability only affects LS Simple Guestbook version 1.0; the injection point is specifically the 'message' parameter in index.php written to posts.txt. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/24904http://securityreason.com/securityalert/2590http://www.securityfocus.com/archive/1/465864/100/0/threadedhttp://www.securityfocus.com/bid/23503http://www.vupen.com/english/advisories/2007/1393https://exchange.xforce.ibmcloud.com/vulnerabilities/33666https://www.exploit-db.com/exploits/3735http://secunia.com/advisories/24904http://securityreason.com/securityalert/2590http://www.securityfocus.com/archive/1/465864/100/0/threadedhttp://www.securityfocus.com/bid/23503http://www.vupen.com/english/advisories/2007/1393https://exchange.xforce.ibmcloud.com/vulnerabilities/33666https://www.exploit-db.com/exploits/3735
2007-04-18
Published