CVE-2007-4279
published 2007-08-09CVE-2007-4279: PHP remote file inclusion vulnerability in config.php in FrontAccounting 1.12 Build 31 allows remote attackers to execute arbitrary PHP code via a URL in the…
PriorityP260high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
75.31%
99.5th percentile
PHP remote file inclusion vulnerability in config.php in FrontAccounting 1.12 Build 31 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| frontaccounting | frontaccounting | — | — |
| frontaccounting | frontaccounting | — | — |
| frontaccounting | frontaccounting | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerable include is triggered via path_to_root being passed to include_once() in config.php, loading an attacker-controlled language.php from a remote URL. ↗
- →Search engine dork can be used to identify exposed FrontAccounting installations; monitor for dork-based scanning activity. ↗
- →CVE-2007-4279 specifically covers the config.php path_to_root RFI vector in FrontAccounting 1.12; related vectors in access/logout.php and subdirectories are tracked under CVE-2007-5148. ↗
- ·The RFI is only exploitable if PHP's allow_url_include (or allow_url_fopen for older PHP) is enabled on the target server, as path_to_root must resolve to a remote URL. ↗
- ·For files other than config.php, the vulnerability is disputed because path_to_root is defined before use; only the config.php vector is confirmed for CVE-2007-4279. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p25j-m6wj-r6qj: PHP remote file inclusion vulnerability in config
ghsa_unreviewed·2022-05-01
CVE-2007-4279 [HIGH] GHSA-p25j-m6wj-r6qj: PHP remote file inclusion vulnerability in config
PHP remote file inclusion vulnerability in config.php in FrontAccounting 1.12 Build 31 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter.
GHSA
GHSA-5xrf-9rc2-jr45: Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-5117 [HIGH] CWE-94 GHSA-5xrf-9rc2-jr45: Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1
Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1.13, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter to (1) access/login.php and (2) includes/lang/language.php, different vectors than CVE-2007-4279.
GHSA
GHSA-rvpr-2mjf-wch6: ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-5148 [HIGH] CWE-94 GHSA-rvpr-2mjf-wch6: ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter to (1) access/logout.php or certain PHP scripts under (2) admin/, (3) dimensions/, (4) gl/, (5) inventory/, (6) manufacturing/, (7) purchasing/, (8) reporting/, (9) sales/, or (10) taxes/. NOTE: the config.php vector is already covered by CVE-2007-4279, and the login.php and language.php vectors are already covered by CVE-2007-5117. NOTE: this issue is disputed by CVE because path_to_root is defined before use in all of the other files reported in the original disclosure.
No detection rules found.
No writeups or analysis indexed.
http://arfis.wordpress.com/2007/09/14/rfi-02-frontaccounting/http://osvdb.org/36431http://secunia.com/advisories/26350http://www.securityfocus.com/bid/25229http://www.vupen.com/english/advisories/2007/2809https://exchange.xforce.ibmcloud.com/vulnerabilities/35873https://www.exploit-db.com/exploits/4269http://arfis.wordpress.com/2007/09/14/rfi-02-frontaccounting/http://osvdb.org/36431http://secunia.com/advisories/26350http://www.securityfocus.com/bid/25229http://www.vupen.com/english/advisories/2007/2809https://exchange.xforce.ibmcloud.com/vulnerabilities/35873https://www.exploit-db.com/exploits/4269
2007-08-09
Published