CVE-2007-5156
Lanius CMS 1.2.16 - 'FCKeditor' Arbitrary File Upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
-Decision
Descriptions
Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php." and has an unknown extension, which is recognized as a .php file by the Apache HTTP server, a different vulnerability than CVE-2006-0658 and CVE-2006-2529.
Una vulnerabilidad de lista negra incompleta en el archivo editor/filemanager/upload/php/upload.php en FCKeditor, tal y como es usado en SiteX CMS versiones 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, y probablemente otros productos, permite a atacantes remotos cargar y ejecutar código PHP arbitrario por medio de un archivo cuyo nombre contiene ".php." y que presenta una extensión desconocida, la cual es reconocida como un archivo .php por el servidor HTTP de Apache, una vulnerabilidad diferente de CVE-2006-0658 y CVE-2006-2529.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-09-30 CVE Reserved
- 2007-10-01 CVE Published
- 2024-08-04 EPSS Updated
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (19)
| URL | Tag | Source |
|---|---|---|
| http://downloads.securityfocus.com/vulnerabilities/exploits/30677.php | Broken Link | |
| http://secunia.com/advisories/27123 | Third Party Advisory | |
| http://secunia.com/advisories/27174 | Third Party Advisory | |
| http://sourceforge.net/forum/forum.php?forum_id=743930 | Broken Link | |
| http://sourceforge.net/project/shownotes.php?release_id=546000 | Broken Link | |
| http://www.securityfocus.com/bid/29422 | Third Party Advisory | |
| http://www.securityfocus.com/bid/30677 | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2007/3464 | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2007/3465 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/42425 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/42733 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/44455 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/5618 | 2024-08-07 | |
| https://www.exploit-db.com/exploits/5688 | 2024-08-07 | |
| http://securityreason.com/securityalert/3182 | 2024-08-07 | |
| http://www.securityfocus.com/archive/1/480830/100/0/threaded | 2024-08-07 | |
| http://www.waraxe.us/advisory-57.html | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://dev.fckeditor.net/changeset/973 | 2020-10-14 | |
| http://dev.fckeditor.net/ticket/1325 | 2020-10-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cardinal Cms Project Search vendor "Cardinal Cms Project" | Cardinal Cms Search vendor "Cardinal Cms Project" for product "Cardinal Cms" | 1.2 Search vendor "Cardinal Cms Project" for product "Cardinal Cms" and version "1.2" | - |
Affected
| ||||||
| Redlinesoft Search vendor "Redlinesoft" | Lanai Cms Search vendor "Redlinesoft" for product "Lanai Cms" | <= 1.2.16 Search vendor "Redlinesoft" for product "Lanai Cms" and version " <= 1.2.16" | - |
Affected
| ||||||
| Sitex Cms Project Search vendor "Sitex Cms Project" | Sitex Cms Search vendor "Sitex Cms Project" for product "Sitex Cms" | 0.7.3 Search vendor "Sitex Cms Project" for product "Sitex Cms" and version "0.7.3" | beta |
Affected
| ||||||
| Syntax Cms Project Search vendor "Syntax Cms Project" | Syntax Cms Search vendor "Syntax Cms Project" for product "Syntax Cms" | <= 1.3 Search vendor "Syntax Cms Project" for product "Syntax Cms" and version " <= 1.3" | - |
Affected
| ||||||