cbcvebase.
CVE-2007-2707
published 2007-05-16

CVE-2007-2707: PHP remote file inclusion vulnerability in linksnet_linkslog_rss.php in Linksnet Newsfeed 1.0 allows remote attackers to execute arbitrary PHP code via a URL…

PriorityP354medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
68.01%
99.2th percentile
PHP remote file inclusion vulnerability in linksnet_linkslog_rss.php in Linksnet Newsfeed 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the dirpath_linksnet_newsfeed parameter.

Affected

1 ranges
VendorProductVersion rangeFixed in
linksnetnewsfeed

Detection & IOCsextracted from sources · hover to see the quote

path/linksnet_newsfeed/linksnet_linkslog_rss.php
filenamelinksnet_linkslog_rss.php
urlhttp://www.linksnet.de/mat/Linksnet_Newsfeed_1_0.zip
  • Monitor HTTP requests targeting linksnet_linkslog_rss.php with a URL-based value in the 'dirpath_linksnet_newsfeed' GET parameter, which is the RFI injection point.
  • RFI payloads may use a trailing '?' (null-byte/query-string trick) appended to the remote file URL to bypass file extension checks, e.g. 'shetll.txt?'.
  • ·The vulnerable parameter 'dirpath_linksnet_newsfeed' must contain a remote URL for exploitation; the vulnerability only affects Linksnet Newsfeed version 1.0.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.