Back to search
CVE-2007-2304
Published: Apr 26, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple directory traversal vulnerabilities in Quick and Dirty Blog (QDBlog) 0.4, and possibly earlier, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter to categories.php and other unspecified files.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
qdblog-categories-file-include(33634)
vdb-entry
x_refsource_XF
ADV-2007-1387
vdb-entry
x_refsource_VUPEN
3729
exploit
x_refsource_EXPLOIT-DB
23485
vdb-entry
x_refsource_BID
20070425 [true] Quick and Dirty Blog RFI
mailing-list
x_refsource_VIM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now