{ "id": "CVE-2007-1233", "sourceIdentifier": "cve@mitre.org", "published": "2007-03-03T19:19:00.000", "lastModified": "2017-10-11T01:31:47.970", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "PHP remote file inclusion vulnerability in downloadcounter.php in STWC-Counter 3.4.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the stwc_counter_verzeichniss parameter." }, { "lang": "es", "value": "Vulnerabilidad PHP de inclusi\u00f3n remota de archivo en downloadcounter.php en STWC-Counter 3.4.0.0 y anteriores permite a atacantes remotos ejecutar c\u00f3digo PHP de su elecci\u00f3n a trav\u00e9s de una URL en el par\u00e1metro stwc_counter_verzeichniss." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-94" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:*:*:*:*:*:*:*:*", "versionEndIncluding": "3.4.0", "matchCriteriaId": "1FC0CB51-766B-4AA5-86B4-C261C34E9394" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.01:*:*:*:*:*:*:*", "matchCriteriaId": "759DB163-8106-42A9-B2EE-1E4BE59F91EA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "86DBCF89-2F3D-4976-8C47-0B7A7D29C59F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "FF368CA8-C766-439F-B6C2-3BC7CEB1EB78" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.02:*:*:*:*:*:*:*", "matchCriteriaId": "36B2BBC3-D6FA-4BF9-A4CA-701EC4232210" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.11:*:*:*:*:*:*:*", "matchCriteriaId": "85CB9D8D-FCD8-4A97-A7FE-067892F6547A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.12:*:*:*:*:*:*:*", "matchCriteriaId": "7CC3BA5E-4F09-44FC-9515-24000CD03724" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.21:*:*:*:*:*:*:*", "matchCriteriaId": "8C94B981-4E8E-4326-AEE6-04B5EBEE7F5C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.22:*:*:*:*:*:*:*", "matchCriteriaId": "FC8EE36C-11A1-4C88-B2E6-11A31BC8D7F3" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "DC9A4763-5DCD-4287-BA3B-F1B787C0467E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "EABC3607-7223-4253-8F67-B94B7145F87A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E70B7654-5864-49CC-BEE5-42521B8F1913" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9B3166D1-E31F-4DF3-86A1-C4941089B934" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "776DA573-50BD-4804-93FF-6B6397929673" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "51A3D042-B40A-41D8-946C-0944659B281D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "2C0C29CC-ECDB-4858-A7C9-B21A0B447EA0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "80D5D7A9-D518-4273-872D-969AE9733812" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "BA1EBE50-2E60-4917-81A1-0223D579432B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "303A29AB-E743-475D-95D6-E4C07ED6EA95" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "B24661EC-1EE0-4D0F-824B-075247124239" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "7075FA8B-FDF9-4D5D-A803-48B35532E15D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "84F50375-BD21-47F0-88FF-ACB8C81AA2C0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "7071060E-E8F2-4655-906C-1791505F4BBA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "04B06EB5-C6C1-47EA-A582-A8134E4DA700" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "4B3E3472-C6C7-410D-858C-9D86C1DD1077" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "0C1327B3-ADA7-47E1-9947-8CA8C6F2BA16" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "07A80D76-BDC9-4FDB-A649-8DFFDDBFC500" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "1C5CD2F4-BD0D-4BC4-B19A-FC60700F4C87" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "5B3A2978-A4E5-41AA-B3EF-8F00F5D72AFC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "C1ABC149-FBA6-4421-A6E6-DF88BAF5E2F4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "019B9A7E-4F78-40A9-8742-76755877C9F8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "349EEBF6-6677-4CB2-B522-35F71688A928" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "04A091CF-22B1-4FE6-BFEA-D5FAA4FA7AB6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "9A527D50-A6BE-4EA4-9414-2CB12180DDF6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.6:*:*:*:*:*:*:*", "matchCriteriaId": "7DCEDABE-70F1-4C18-B28B-B5DDACDC5059" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "8C6F6DC7-B8AC-451A-814F-24E76C7A9173" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "75A7C28B-20BC-4BF8-85CB-30FEA0F1266C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "8EA06A78-DCE2-4E5F-9770-3F492A6DC549" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "D0EF9BAF-6370-474A-9B9A-AA97AD79C7ED" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "2C8168E8-23A3-42B0-9133-ED8E4D15F09E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "65F23B35-B879-492A-9EB9-A69D1454E7AA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "A89BC618-A62B-4627-9001-5F8C66FDA00C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "91E46F97-6C8C-416C-BD1C-22675DA82A2B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E006EF2A-3599-485C-9DFC-D9B6D0B8D66B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "B9D34793-ED1A-4237-A125-D10CF6390842" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5A405D5F-77EF-4C47-B90A-90538475D5AE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "43DDF511-830A-4C4E-82A0-FFF6F7AAA39D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "F9526536-68C2-4356-8AB9-B6A019E95868" } ] } ] } ], "references": [ { "url": "http://www.securityfocus.com/bid/22723", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2007/0754", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32681", "source": "cve@mitre.org" }, { "url": "https://www.exploit-db.com/exploits/3379", "source": "cve@mitre.org" } ] }