ID CVE-2007-0182
Summary Multiple PHP remote file inclusion vulnerabilities in magic photo storage website allow remote attackers to execute arbitrary PHP code via a URL in the _config[site_path] parameter to (1) admin_password.php, (2) add_welcome_text.php, (3) admin_email.php, (4) add_templates.php, (5) admin_paypal_email.php, (6) approve_member.php, (7) delete_member.php, (8) index.php, (9) list_members.php, (10) membership_pricing.php, or (11) send_email.php in admin/; (12) config.php or (13) db_config.php in include/; or (14) add_category.php, (15) add_news.php, (16) change_catalog_template.php, (17) couple_milestone.php, (18) couple_profile.php, (19) delete_category.php, (20) index.php, (21) login.php, (22) logout.php, (23) register.php, (24) upload_photo.php, (25) user_catelog_password.php, (26) user_email.php, (27) user_extend.php, or (28) user_membership_password.php in user/. NOTE: the include/common_function.php vector is already covered by another candidate from the same date.
References
Vulnerable Configurations
  • cpe:2.3:a:scriptaty:magic_photo_storage_website:*:*:*:*:*:*:*:*
    cpe:2.3:a:scriptaty:magic_photo_storage_website:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 16-10-2018 - 16:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 21965
bugtraq 20070108 magic photo storage website Multiple Remote File Inclusion
osvdb
  • 32668
  • 33411
  • 33412
  • 33413
  • 33414
  • 33415
  • 33416
  • 33417
  • 33418
  • 33419
  • 33420
  • 33421
  • 33422
  • 33423
  • 33425
  • 33426
  • 33427
  • 33428
  • 33429
  • 33430
  • 33431
  • 33432
  • 33433
  • 33434
  • 33435
  • 33436
  • 33437
  • 33438
  • 33439
sreason 2136
Last major update 16-10-2018 - 16:31
Published 12-01-2007 - 05:04
Last modified 16-10-2018 - 16:31
Back to Top