CVE-2007-2707
published 2007-05-16CVE-2007-2707: PHP remote file inclusion vulnerability in linksnet_linkslog_rss.php in Linksnet Newsfeed 1.0 allows remote attackers to execute arbitrary PHP code via a URL…
PriorityP354medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
68.01%
99.2th percentile
PHP remote file inclusion vulnerability in linksnet_linkslog_rss.php in Linksnet Newsfeed 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the dirpath_linksnet_newsfeed parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linksnet | newsfeed | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor HTTP requests targeting linksnet_linkslog_rss.php with a URL-based value in the 'dirpath_linksnet_newsfeed' GET parameter, which is the RFI injection point. ↗
- →RFI payloads may use a trailing '?' (null-byte/query-string trick) appended to the remote file URL to bypass file extension checks, e.g. 'shetll.txt?'. ↗
- ·The vulnerable parameter 'dirpath_linksnet_newsfeed' must contain a remote URL for exploitation; the vulnerability only affects Linksnet Newsfeed version 1.0. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/36050http://secunia.com/advisories/25271http://www.securityfocus.com/bid/23982http://www.vupen.com/english/advisories/2007/1826https://exchange.xforce.ibmcloud.com/vulnerabilities/34297https://www.exploit-db.com/exploits/3923http://osvdb.org/36050http://secunia.com/advisories/25271http://www.securityfocus.com/bid/23982http://www.vupen.com/english/advisories/2007/1826https://exchange.xforce.ibmcloud.com/vulnerabilities/34297https://www.exploit-db.com/exploits/3923
2007-05-16
Published