CVE-2013-1806
PHP-Fusion 7.02.05 - Multiple Vulnerabilities
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Multiple directory traversal vulnerabilities in PHP-Fusion before 7.02.06 allow remote authenticated users to include and execute arbitrary files via a .. (dot dot) in the (1) user_theme parameter to maincore.php; or remote authenticated administrators to delete arbitrary files via the (2) enable parameter to administration/user_fields.php or (3) file parameter to administration/db_backup.php.
Múltiples vulnerabilidades de salto de directorio en PHP-Fusion anterior a 7.02.06 permiten a usuarios remotos autenticados incluir y ejecutar archivos arbitrarios a través de un .. (punto punto) en (1) el parámetro user_theme hacia maincore.php; o administradores remotos autenticados eliminar archivos arbitrarios a través de (2) el parámetro enable hacia administration/user_fields.php o (3) el parámetro file hacia administration/db_backup.php.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-02-19 CVE Reserved
- 2013-03-01 First Exploit
- 2014-04-30 CVE Published
- 2024-04-28 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://seclists.org/fulldisclosure/2013/Feb/154 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2013/03/03/1 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2013/03/03/2 | Mailing List |
|
| http://www.osvdb.org/90692 | Vdb Entry | |
| http://www.osvdb.org/90694 | Vdb Entry | |
| http://www.osvdb.org/90696 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/24562 | 2013-03-01 | |
| http://packetstormsecurity.com/files/120598/PHP-Fusion-7.02.05-XSS-LFI-SQL-Injection.html | 2024-08-06 | |
| http://www.waraxe.us/advisory-97.html | 2024-08-06 |
| URL | Date | SRC |
|---|---|---|
| http://www.php-fusion.co.uk/news.php?readmore=569 | 2014-05-01 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Php-fusion Search vendor "Php-fusion" | Php-fusion Search vendor "Php-fusion" for product "Php-fusion" | <= 7.02.05 Search vendor "Php-fusion" for product "Php-fusion" and version " <= 7.02.05" | - |
Affected
| ||||||
| Php-fusion Search vendor "Php-fusion" | Php-fusion Search vendor "Php-fusion" for product "Php-fusion" | 7.02.01 Search vendor "Php-fusion" for product "Php-fusion" and version "7.02.01" | - |
Affected
| ||||||
| Php-fusion Search vendor "Php-fusion" | Php-fusion Search vendor "Php-fusion" for product "Php-fusion" | 7.02.02 Search vendor "Php-fusion" for product "Php-fusion" and version "7.02.02" | - |
Affected
| ||||||
| Php-fusion Search vendor "Php-fusion" | Php-fusion Search vendor "Php-fusion" for product "Php-fusion" | 7.02.03 Search vendor "Php-fusion" for product "Php-fusion" and version "7.02.03" | - |
Affected
| ||||||
| Php-fusion Search vendor "Php-fusion" | Php-fusion Search vendor "Php-fusion" for product "Php-fusion" | 7.02.04 Search vendor "Php-fusion" for product "Php-fusion" and version "7.02.04" | - |
Affected
| ||||||