CVE-2007-2762

Published: 18/05/2007 Updated: 11/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in Build it Fast (bif3) 0.4.1 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the pear_dir parameter to Base/Application.php, or the (2) sys_dir parameter to (a) Footer.php, (b) widget.BifContainer.php, (c) widget.BifRoot.php, (d) widget.BifRoot2.php, (e) widget.BifRoot3.php, or (f) widget.BifWarning.php in Widgets/Base/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
build it fast build it fast 0.4.1

# bif3-041 <= Remote File Include Vulnerablitiy # DScript: biflunixcomar/tgz/bif3-041tgz # Discovered by: Alkomandoz Hacker # Homepage: asb-maynet & mohandkocom & sniper-sacom ==================================== # Exploit:[Path]/Base/Applicationphp?pear_dir=Shell # Exploit:[Path]/Widgets/Base/Footerphp?sys_dir ...

NVD-CWE-Other http://www.securityfocus.com/bid/24045 http://osvdb.org/37953 http://osvdb.org/37949 http://osvdb.org/37951 http://osvdb.org/37952 http://osvdb.org/37955 http://osvdb.org/37950 http://osvdb.org/37954 https://exchange.xforce.ibmcloud.com/vulnerabilities/34362 https://www.exploit-db.com/exploits/3947 https://nvd.nist.gov https://www.exploit-db.com/exploits/3947/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2762

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect