Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-2457
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-02 May, 2007 | 18:19
Updated At-14 Feb, 2024 | 01:17

PHP remote file inclusion vulnerability in resources/includes/class.Smarty.php in Pixaria Gallery before 1.4.3 allows remote attackers to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.07.5HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Type: Primary
Version: 2.0
Base score: 7.5
Base severity: HIGH
Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
pixaria
pixaria
>>pixaria_gallery>>1.0.1
cpe:2.3:a:pixaria:pixaria_gallery:1.0.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.0.2
cpe:2.3:a:pixaria:pixaria_gallery:1.0.2:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.0.3
cpe:2.3:a:pixaria:pixaria_gallery:1.0.3:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.0.4
cpe:2.3:a:pixaria:pixaria_gallery:1.0.4:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.0.5
cpe:2.3:a:pixaria:pixaria_gallery:1.0.5:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1
cpe:2.3:a:pixaria:pixaria_gallery:1.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.1
cpe:2.3:a:pixaria:pixaria_gallery:1.1.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.2
cpe:2.3:a:pixaria:pixaria_gallery:1.1.2:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.3
cpe:2.3:a:pixaria:pixaria_gallery:1.1.3:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.4
cpe:2.3:a:pixaria:pixaria_gallery:1.1.4:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.5
cpe:2.3:a:pixaria:pixaria_gallery:1.1.5:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.1.6
cpe:2.3:a:pixaria:pixaria_gallery:1.1.6:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.2
cpe:2.3:a:pixaria:pixaria_gallery:1.2:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.2.1
cpe:2.3:a:pixaria:pixaria_gallery:1.2.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.3
cpe:2.3:a:pixaria:pixaria_gallery:1.3:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.3.1
cpe:2.3:a:pixaria:pixaria_gallery:1.3.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.3.2
cpe:2.3:a:pixaria:pixaria_gallery:1.3.2:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.3.3
cpe:2.3:a:pixaria:pixaria_gallery:1.3.3:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.4
cpe:2.3:a:pixaria:pixaria_gallery:1.4:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.4.1
cpe:2.3:a:pixaria:pixaria_gallery:1.4.1:*:*:*:*:*:*:*
pixaria
pixaria
>>pixaria_gallery>>1.4.2
cpe:2.3:a:pixaria:pixaria_gallery:1.4.2:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
CWE ID: NVD-CWE-Other
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/34976cve@mitre.org
N/A
http://pixaria.com/index.history.phpcve@mitre.org
URL Repurposed
http://secunia.com/advisories/24821cve@mitre.org
Vendor Advisory
http://www.pixaria.com/news/article/70/cve@mitre.org
URL Repurposed
http://www.pixaria.com/news/article/71/cve@mitre.org
Patch
URL Repurposed
http://www.securityfocus.com/archive/1/465847/100/200/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/23489cve@mitre.org
Patch
http://www.vupen.com/english/advisories/2007/1390cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/33662cve@mitre.org
N/A
https://www.exploit-db.com/exploits/3733cve@mitre.org
N/A
Hyperlink: http://osvdb.org/34976
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://pixaria.com/index.history.php
Source: cve@mitre.org
Resource:
URL Repurposed
Hyperlink: http://secunia.com/advisories/24821
Source: cve@mitre.org
Resource:
Vendor Advisory
Hyperlink: http://www.pixaria.com/news/article/70/
Source: cve@mitre.org
Resource:
URL Repurposed
Hyperlink: http://www.pixaria.com/news/article/71/
Source: cve@mitre.org
Resource:
Patch
URL Repurposed
Hyperlink: http://www.securityfocus.com/archive/1/465847/100/200/threaded
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/23489
Source: cve@mitre.org
Resource:
Patch
Hyperlink: http://www.vupen.com/english/advisories/2007/1390
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/33662
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://www.exploit-db.com/exploits/3733
Source: cve@mitre.org
Resource: N/A
Change History
0Changes found
Details not found