Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-5492
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-17 Oct, 2007 | 19:17
Updated At-15 Oct, 2018 | 21:45

Static code injection vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the value parameter.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.6MEDIUM
AV:N/AC:H/Au:S/C:P/I:P/A:P
Type: Primary
Version: 2.0
Base score: 4.6
Base severity: MEDIUM
Vector:
AV:N/AC:H/Au:S/C:P/I:P/A:P
CPE Matches
sitebar
sitebar
>>sitebar>>3.3.8
cpe:2.3:a:sitebar:sitebar:3.3.8:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-94Primarynvd@nist.gov
CWE ID: CWE-94
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Refer to: http://sitebar.org/downloads.php and http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup for patch information.

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/43760cve@mitre.org
N/A
http://secunia.com/advisories/27503cve@mitre.org
N/A
http://secunia.com/advisories/28008cve@mitre.org
N/A
http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markupcve@mitre.org
N/A
http://www.debian.org/security/2007/dsa-1423cve@mitre.org
N/A
http://www.gentoo.org/security/en/glsa/glsa-200711-05.xmlcve@mitre.org
N/A
http://www.securityfocus.com/archive/1/482499/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/26126cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2007/3768cve@mitre.org
N/A
https://bugs.gentoo.org/attachment.cgi?id=133465&action=viewcve@mitre.org
N/A
https://bugs.gentoo.org/show_bug.cgi?id=195810cve@mitre.org
N/A
Hyperlink: http://osvdb.org/43760
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/27503
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/28008
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.debian.org/security/2007/dsa-1423
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200711-05.xml
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/archive/1/482499/100/0/threaded
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/26126
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.vupen.com/english/advisories/2007/3768
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://bugs.gentoo.org/attachment.cgi?id=133465&action=view
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://bugs.gentoo.org/show_bug.cgi?id=195810
Source: cve@mitre.org
Resource: N/A
Change History
0Changes found
Details not found