Back to search
CVE-2007-0205
Published: Jan 11, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in admin/skins.php for @lex Guestbook 4.0.2 and earlier allows remote attackers to create files in arbitrary directories via ".." sequences in the (1) aj_skin and (2) skin_edit parameters. NOTE: this can be leveraged for file inclusion by creating a skin file in the lang directory, then referencing that file via the lang parameter to index.php, which passes a sanity check in livre_include.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://acid-root.new.fr/poc/20070107.txt
x_refsource_MISC
@lexguestbook-livreinclude-file-include(31397)
vdb-entry
x_refsource_XF
31709
vdb-entry
x_refsource_OSVDB
2135
third-party-advisory
x_refsource_SREASON
31708
vdb-entry
x_refsource_OSVDB
21926
vdb-entry
x_refsource_BID
20070107 @lex Guestbook <= 4.0.2 Remote Command Execution Exploit
mailing-list
x_refsource_BUGTRAQ
3103
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now