CVE-2006-7052

EPSS 6.4%

Multiple PHP remote file inclusion vulnerabilities in DotWidget For Articles (dotwidgeta) 0.2 allow remote attackers to execute arbitrary code via a URL in the (1) file_path parameter to (a) index.php, (b) showcatpicks.php, and (c) showarticle.php; and the (2) admin_header_file and (3) admin_footer_file parameters to (d) admin/authors.php, (e) admin/index.php, (f) admin/categories.php, (g) admin/editconfig.php, and (h) admin/articles.php.

Affected products

n/a · n/a

public PoCs found — 7

exploitdbwww.exploit-db.com/exploits/28042unverified exploitdbwww.exploit-db.com/exploits/28041unverified exploitdbwww.exploit-db.com/exploits/28045unverified exploitdbwww.exploit-db.com/exploits/28046unverified exploitdbwww.exploit-db.com/exploits/28043unverified exploitdbwww.exploit-db.com/exploits/28040unverified exploitdbwww.exploit-db.com/exploits/28039unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://securityreason.com/securityalert/2308 https://exchange.xforce.ibmcloud.com/vulnerabilities/27327 http://www.securityfocus.com/archive/1/437483 http://www.securityfocus.com/bid/18479