CVE

Id
29439  
CVE No.
CVE-2007-6082  
Status
Candidate  
Description
Direct static code injection vulnerability in acp/savenews.php in Sciurus Hosting Panel, possibly 2.0.3, allows remote attackers to inject arbitrary PHP code via the filecontents parameter, which can be executed by accessing includes/news.php.  
Phase
Assigned (20071121)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
309569 29439 CVE-2007-6082 BUGTRAQ:20071117 Sciurus Hosting Panel Code İnjection  View
309570 29439 CVE-2007-6082 URL:http://www.securityfocus.com/archive/1/archive/1/483867/100/0/threaded  View
309571 29439 CVE-2007-6082 MILW0RM:4635  View
309572 29439 CVE-2007-6082 URL:http://www.milw0rm.com/exploits/4635  View
309573 29439 CVE-2007-6082 MISC:http://www.r57.li/exploit.txt  View
309574 29439 CVE-2007-6082 BID:26481  View
309575 29439 CVE-2007-6082 URL:http://www.securityfocus.com/bid/26481  View
309576 29439 CVE-2007-6082 SREASON:3388  View
309577 29439 CVE-2007-6082 URL:http://securityreason.com/securityalert/3388  View
309578 29439 CVE-2007-6082 XF:sciurus-savenews-code-execution(38543)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55966 JVNDB-2007-004658 HotScripts の Clone Script における SQL インジェクションの脆弱性 HotScripts の Clone Script には、SQL インジェクションの脆弱性が存在します。 CVE-2007-6084 29439 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004658.html  View