e107 Website System Search.PHP Remote File Include Vulnerability
BID:13572
Info
e107 Website System Search.PHP Remote File Include Vulnerability
| Bugtraq ID: | 13572 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 10 2005 12:00AM |
| Updated: | May 10 2005 12:00AM |
| Credit: | Discovered by Heintz. |
| Vulnerable: |
e107 e107 website system 0.617 |
| Not Vulnerable: | |
Discussion
e107 Website System Search.PHP Remote File Include Vulnerability
e107 Website System is prone to a remote file include vulnerability. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
e107 Website System is prone to a remote file include vulnerability. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
Exploit / POC
e107 Website System Search.PHP Remote File Include Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
e107 Website System Search.PHP Remote File Include Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
e107 Website System Search.PHP Remote File Include Vulnerability
References:
References:
- [core] multiple security vulnearabilities in e107 (e107.org)
- e107 website system Homepage (e107.org)