Vulnerabilities > CVE-2007-2290 - Unspecified vulnerability in Cafelog B2 0.6.1

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
cafelog
exploit available
NVD
Published: 2007-04-26
Updated: 2024-11-21

Summary

Multiple PHP remote file inclusion vulnerabilities in B2 Weblog and News Publishing Tool 0.6.1 allow remote attackers to execute arbitrary PHP code via a URL in the b2inc parameter to (1) b2archives.php, (2) b2categories.php, or (3) b2mail.php. NOTE: this may overlap CVE-2002-1466.

Vulnerable Configurations

Part Description Count
Application
Cafelog
1

Exploit-Db

  • descriptionCafeLog B2 0.6.1 Weblog and News Publishing Tool b2categories.php b2inc Parameter Remote File Inclusion. CVE-2007-2290. Webapps exploit for php platform
    idEDB-ID:29905
    last seen2016-02-03
    modified2006-04-25
    published2006-04-25
    reporteralijsb
    sourcehttps://www.exploit-db.com/download/29905/
    titleCafeLog B2 0.6.1 Weblog and News Publishing Tool b2categories.php b2inc Parameter Remote File Inclusion
  • descriptionCafeLog B2 0.6.1 Weblog and News Publishing Tool b2archives.php b2inc Parameter Remote File Inclusion. CVE-2007-2290. Webapps exploit for php platform
    idEDB-ID:29904
    last seen2016-02-03
    modified2006-04-25
    published2006-04-25
    reporteralijsb
    sourcehttps://www.exploit-db.com/download/29904/
    titleCafeLog B2 0.6.1 Weblog and News Publishing Tool b2archives.php b2inc Parameter Remote File Inclusion
  • descriptionCafeLog B2 0.6.1 Weblog and News Publishing Tool b2mail.php b2inc Parameter Remote File Inclusion. CVE-2007-2290. Webapps exploit for php platform
    idEDB-ID:29906
    last seen2016-02-03
    modified2006-04-25
    published2006-04-25
    reporteralijsb
    sourcehttps://www.exploit-db.com/download/29906/
    titleCafeLog B2 0.6.1 Weblog and News Publishing Tool b2mail.php b2inc Parameter Remote File Inclusion

References