CVE-2007-5100 - Vulnerability Details - OpenCVE

Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) language/lang_german/lang_admin_album.php, (2) language/lang_english/lang_main_album.php, and (3) language/lang_english/lang_admin_album.php, different vectors than CVE-2007-5009.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Phpbb	Phpbb Plus

Configuration 1 [-]

OR	cpe:2.3:a:phpbb:phpbb_plus::::::::
	cpe:2.3:a:phpbb:phpbb_plus:1.53:::::::*

No data.

References

Link	Providers
http://osvdb.org/38723
http://osvdb.org/38724
http://osvdb.org/38725
http://secunia.com/advisories/26888
http://www.phpbb2.de/ftopic45218.html
http://www.securityfocus.com/bid/25776
http://www.vupen.com/english/advisories/2007/3247

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-09-26T22:00:00

Updated: 2024-08-07T15:17:28.308Z

Reserved: 2007-09-26T00:00:00

Link: CVE-2007-5100

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-09-26T22:17:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-5100

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-09-24T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) language/lang_german/lang_admin_album.php, (2) language/lang_english/lang_main_album.php, and (3) language/lang_english/lang_admin_album.php, different vectors than CVE-2007-5009."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-10-02T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "26888", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26888"}, {"name": "ADV-2007-3247", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3247"}, {"name": "38724", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/38724"}, {"name": "38723", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/38723"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.phpbb2.de/ftopic45218.html"}, {"name": "38725", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/38725"}, {"name": "25776", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25776"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5100", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) language/lang_german/lang_admin_album.php, (2) language/lang_english/lang_main_album.php, and (3) language/lang_english/lang_admin_album.php, different vectors than CVE-2007-5009."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "26888", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26888"}, {"name": "ADV-2007-3247", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3247"}, {"name": "38724", "refsource": "OSVDB", "url": "http://osvdb.org/38724"}, {"name": "38723", "refsource": "OSVDB", "url": "http://osvdb.org/38723"}, {"name": "http://www.phpbb2.de/ftopic45218.html", "refsource": "CONFIRM", "url": "http://www.phpbb2.de/ftopic45218.html"}, {"name": "38725", "refsource": "OSVDB", "url": "http://osvdb.org/38725"}, {"name": "25776", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25776"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:17:28.308Z"}, "title": "CVE Program Container", "references": [{"name": "26888", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/26888"}, {"name": "ADV-2007-3247", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3247"}, {"name": "38724", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/38724"}, {"name": "38723", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/38723"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.phpbb2.de/ftopic45218.html"}, {"name": "38725", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/38725"}, {"name": "25776", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/25776"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5100", "datePublished": "2007-09-26T22:00:00", "dateReserved": "2007-09-26T00:00:00", "dateUpdated": "2024-08-07T15:17:28.308Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:phpbb:phpbb_plus:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD740EB0-FDA6-472B-8B25-2DF788AFB1CC", "versionEndIncluding": "1.53a", "vulnerable": true}, {"criteria": "cpe:2.3:a:phpbb:phpbb_plus:1.53:*:*:*:*:*:*:*", "matchCriteriaId": "17B75965-AD2C-4A71-B4AA-2E64C708076E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) language/lang_german/lang_admin_album.php, (2) language/lang_english/lang_main_album.php, and (3) language/lang_english/lang_admin_album.php, different vectors than CVE-2007-5009."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inclusi\u00f3n remota de archivo en PHP en phpBB Plus 1.53, y 1.53a anterior a 20070922, cuando register_globals est\u00e1 activado, permiten a atacantes remotos ejecutar c\u00f3digo PHP de su elecci\u00f3n mediante un URL en el par\u00e1metro phpbb_root_path de (1) language/lang_german/lang_admin_album.php, (2) language/lang_english/lang_main_album.php, and (3) language/lang_english/lang_admin_album.php, vectores diferentes de CVE-2007-5009."}], "id": "CVE-2007-5100", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-09-26T22:17:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/38723"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/38724"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/38725"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/26888"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.phpbb2.de/ftopic45218.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/25776"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/3247"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/38723"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/38724"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/38725"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/26888"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.phpbb2.de/ftopic45218.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/25776"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/3247"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}