CVE-2007-2250 : Detail

CVE-2007-2250

2.24%V3
Network
2007-04-25
14h00 +00:00
2018-10-16
12h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

admin.php in Phorum before 5.1.22 allows remote attackers to obtain the full path via the module[] parameter.

CVE Informations

Metrics

Metrics Score Severity CVSS Vector Source
V2 5 AV:N/AC:L/Au:N/C:P/I:N/A:N [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Exploit information

Exploit Database EDB-ID : 29890

Publication date : 2007-04-22 22h00 +00:00
Author : Janek Vind
EDB Verified : Yes

source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify sensitive data, or exploit latent vulnerabilities in the underlying database implementation. Phorum 5.1.20 is affected; prior versions may also be vulnerable. http://localhost/phorum.5.1.20/admin.php?module[]=groups Warning: basename() expects parameter 1 to be string, array given in C:\apache_wwwroot\phorum.5.1.20\admin.php on line 57

Products Mentioned

Configuraton 0

Phorum>>Phorum >> Version To (including) 5.1.20

References

http://www.phorum.org/story.php?76
Tags : x_refsource_CONFIRM
http://www.securitytracker.com/id?1017936
Tags : vdb-entry, x_refsource_SECTRACK
http://www.vupen.com/english/advisories/2007/1479
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/24932
Tags : third-party-advisory, x_refsource_SECUNIA
http://securityreason.com/securityalert/2617
Tags : third-party-advisory, x_refsource_SREASON
http://www.securityfocus.com/bid/23616
Tags : vdb-entry, x_refsource_BID
http://osvdb.org/35060
Tags : vdb-entry, x_refsource_OSVDB