CVE-2007-2545

Published: 09/05/2007 Updated: 11/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in Persism CMS 0.9.2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the system[path] parameter to (1) blocks/headerfile.php, (2) files/blocks/latest_files.php, (3) filters/headerfile.php, (4) forums/blocks/latest_posts.php, (5) groups/headerfile.php, (6) links/blocks/links.php, (7) menu/headerfile.php, (8) news/blocks/latest_news.php, (9) settings/headerfile.php, or (10) users/headerfile.php, in modules/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
persism cms persism cms

# Persism Content Management System <= 092 Multiple Remote File Inclusion Vulnerabilities # DScript: wwwpersismcom/emil/092/092targz # Discovered by: GolD_M = [Mahmood_ali] # Homepage: wwwTryagcc # Exploit:[Path]/modules/blocks/headerfilephp?system[path]=Shell # Exploit:[Path]/modules/files/blocks/latest_filesphp?sys ...

NVD-CWE-Other http://www.securityfocus.com/bid/23828 http://osvdb.org/37768 http://osvdb.org/37767 http://osvdb.org/37776 http://osvdb.org/37771 http://osvdb.org/37774 http://osvdb.org/37773 http://osvdb.org/37772 http://osvdb.org/37769 http://osvdb.org/37770 http://osvdb.org/37775 http://www.vupen.com/english/advisories/2007/1671 https://exchange.xforce.ibmcloud.com/vulnerabilities/34102 https://www.exploit-db.com/exploits/3853 https://nvd.nist.gov https://www.exploit-db.com/exploits/3853/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2545

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect