CVE-2007-6266
published 2007-12-07CVE-2007-6266: Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
0.98%
57.8th percentile
Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to modules/arcade/index.php in a show_stats action, or the lid parameter to (2) modules/myalbum/ratephoto.php or (3) modules/mylinks/ratelink.php, different vectors than CVE-2007-5104.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bcoos | bcoos | <= 1.0.10 | — |
| bcoos | bcoos | — | — |
| e-xoops | e-xoops | — | — |
| e-xoops | e-xoops | — | — |
| e-xoops | e-xoops | — | — |
| e-xoops | e-xoops | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rv46-hhfc-36wm: Multiple SQL injection vulnerabilities in bcoos 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-6266 [HIGH] CWE-89 GHSA-rv46-hhfc-36wm: Multiple SQL injection vulnerabilities in bcoos 1
Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to modules/arcade/index.php in a show_stats action, or the lid parameter to (2) modules/myalbum/ratephoto.php or (3) modules/mylinks/ratelink.php, different vectors than CVE-2007-5104.
GHSA
GHSA-87xr-5223-mqpv: Multiple SQL injection vulnerabilities in e-Xoops (exoops) 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-6380 [HIGH] CWE-89 GHSA-87xr-5223-mqpv: Multiple SQL injection vulnerabilities in e-Xoops (exoops) 1
Multiple SQL injection vulnerabilities in e-Xoops (exoops) 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the (1) lid parameter to (a) mylinks/ratelink.php, (b) adresses/ratefile.php, (c) mydownloads/ratefile.php, (d) mysections/ratefile.php, and (e) myalbum/ratephoto.php in modules/; the (2) bid parameter to (f) modules/banners/click.php; and the (3) gid parameter to (g) modules/arcade/index.php in a show_stats and play_game action, related issues to CVE-2007-5104 and CVE-2007-6266.
GHSA
GHSA-mxpm-hpcw-8wg6: SQL injection vulnerability in modules/adresses/ratefile
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-6275 [HIGH] CWE-89 GHSA-mxpm-hpcw-8wg6: SQL injection vulnerability in modules/adresses/ratefile
SQL injection vulnerability in modules/adresses/ratefile.php in bcoos 1.0.10 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter, a different vector than CVE-2007-6266.
No detection rules found.
Exploit-DB
bcoos 1.0.10 - 'ratephoto.php' SQL Injection
exploitdb·2007-11-28
CVE-2007-6266 bcoos 1.0.10 - 'ratephoto.php' SQL Injection
bcoos 1.0.10 - 'ratephoto.php' SQL Injection
---
source: https://www.securityfocus.com/bid/26629/info
The 'bcoos' program is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data.
These issues affect the application's arcade, myalbum, mylinks, and ecal modules.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
These issues affect bcoos 1.0.10; other versions may also be affected.
http://www.example.com/modules/myalbum/ratephoto.php?lid=-1%20UNION%20SELECT%20pass%20FROM%20bcoos_users%20LIMIT%201
Exploit-DB
bcoos 1.0.10 - 'ratelink.php' SQL Injection
exploitdb·2007-11-28
CVE-2007-6266 bcoos 1.0.10 - 'ratelink.php' SQL Injection
bcoos 1.0.10 - 'ratelink.php' SQL Injection
---
source: https://www.securityfocus.com/bid/26629/info
The 'bcoos' program is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data.
These issues affect the application's arcade, myalbum, mylinks, and ecal modules.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
These issues affect bcoos 1.0.10; other versions may also be affected.
http://www.example.com/modules/mylinks/ratelink.php?lid=-1%20UNION%20SELECT%20pass%20FROM%20bcoos_users%20LIMIT%201
No writeups or analysis indexed.
http://lostmon.blogspot.com/2007/11/bcoops-sql-injection-and-cross-site.htmlhttp://secunia.com/advisories/26945http://www.securityfocus.com/bid/26629https://exchange.xforce.ibmcloud.com/vulnerabilities/36752http://lostmon.blogspot.com/2007/11/bcoops-sql-injection-and-cross-site.htmlhttp://secunia.com/advisories/26945http://www.securityfocus.com/bid/26629https://exchange.xforce.ibmcloud.com/vulnerabilities/36752
2007-12-07
Published