Vulnerability-Lookup

CNVD-2015-06414

Vulnerability from cnvd - Published: 2015-10-10

Title

Web Reference Database PHP远程文件包含漏洞

Description

Web Reference Database（又名refbase）是refbase社区所研发的一款基于web提供搜索工具和自动生成索引对科学文献进行管理的多用户界面产品。 Web Reference Database 0.9.6及之前版本的install.php脚本中存在PHP远程文件包含漏洞。远程攻击者可T通过‘pathToMYSQL’或‘databaseStructureFile’参数，利用该漏洞执行任意PHP代码。

Severity

高

Patch Name

Web Reference Database PHP远程文件包含漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：http://www.refbase.net/index.php/Web_Reference_Database

Reference

http://www.kb.cert.org/vuls/id/374092

Impacted products

Name
Web Reference Database Web Reference Database <= 0.9.6

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-7381"
    }
  },
  "description": "Web Reference Database\uff08\u53c8\u540drefbase\uff09\u662frefbase\u793e\u533a\u6240\u7814\u53d1\u7684\u4e00\u6b3e\u57fa\u4e8eweb\u63d0\u4f9b\u641c\u7d22\u5de5\u5177\u548c\u81ea\u52a8\u751f\u6210\u7d22\u5f15\u5bf9\u79d1\u5b66\u6587\u732e\u8fdb\u884c\u7ba1\u7406\u7684\u591a\u7528\u6237\u754c\u9762\u4ea7\u54c1\u3002\r\n\r\nWeb Reference Database 0.9.6\u53ca\u4e4b\u524d\u7248\u672c\u7684install.php\u811a\u672c\u4e2d\u5b58\u5728PHP\u8fdc\u7a0b\u6587\u4ef6\u5305\u542b\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53efT\u901a\u8fc7\u2018pathToMYSQL\u2019\u6216\u2018databaseStructureFile\u2019\u53c2\u6570\uff0c\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610fPHP\u4ee3\u7801\u3002",
  "discovererName": "Todd Lewellen",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1ahttp://www.refbase.net/index.php/Web_Reference_Database",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-06414",
  "openTime": "2015-10-10",
  "patchDescription": "Web Reference Database\uff08\u53c8\u540drefbase\uff09\u662frefbase\u793e\u533a\u6240\u7814\u53d1\u7684\u4e00\u6b3e\u57fa\u4e8eweb\u63d0\u4f9b\u641c\u7d22\u5de5\u5177\u548c\u81ea\u52a8\u751f\u6210\u7d22\u5f15\u5bf9\u79d1\u5b66\u6587\u732e\u8fdb\u884c\u7ba1\u7406\u7684\u591a\u7528\u6237\u754c\u9762\u4ea7\u54c1\u3002 \r\n\r\nWeb Reference Database 0.9.6\u53ca\u4e4b\u524d\u7248\u672c\u7684install.php\u811a\u672c\u4e2d\u5b58\u5728PHP\u8fdc\u7a0b\u6587\u4ef6\u5305\u542b\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53efT\u901a\u8fc7\u2018pathToMYSQL\u2019\u6216\u2018databaseStructureFile\u2019\u53c2\u6570\uff0c\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610fPHP\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Web Reference Database PHP\u8fdc\u7a0b\u6587\u4ef6\u5305\u542b\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Web Reference Database Web Reference Database \u003c= 0.9.6"
  },
  "referenceLink": "http://www.kb.cert.org/vuls/id/374092",
  "serverity": "\u9ad8",
  "submitTime": "2015-10-09",
  "title": "Web Reference Database PHP\u8fdc\u7a0b\u6587\u4ef6\u5305\u542b\u6f0f\u6d1e"
}

CVE-2015-7381 (GCVE-0-2015-7381)

Vulnerability from cvelistv5 – Published: 2015-09-28 01:00 – Updated: 2024-08-06 07:51

Summary

Multiple PHP remote file inclusion vulnerabilities in install.php in Web Reference Database (aka refbase) through 0.9.6 allow remote attackers to execute arbitrary PHP code via the (1) pathToMYSQL or (2) databaseStructureFile parameter, a different issue than CVE-2015-6008.

Severity ?

No CVSS data available.

CWE

Assigner

certcc

References

URL

Tags

http://www.kb.cert.org/vuls/id/374092

third-party-advisoryx_refsource_CERT-VN

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T07:51:27.097Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#374092",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/374092"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-01-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple PHP remote file inclusion vulnerabilities in install.php in Web Reference Database (aka refbase) through 0.9.6 allow remote attackers to execute arbitrary PHP code via the (1) pathToMYSQL or (2) databaseStructureFile parameter, a different issue than CVE-2015-6008."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2015-09-28T01:57:01",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "VU#374092",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/374092"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2015-7381",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple PHP remote file inclusion vulnerabilities in install.php in Web Reference Database (aka refbase) through 0.9.6 allow remote attackers to execute arbitrary PHP code via the (1) pathToMYSQL or (2) databaseStructureFile parameter, a different issue than CVE-2015-6008."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#374092",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/374092"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2015-7381",
    "datePublished": "2015-09-28T01:00:00",
    "dateReserved": "2015-09-27T00:00:00",
    "dateUpdated": "2024-08-06T07:51:27.097Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2015-06414

CVE-2015-7381 (GCVE-0-2015-7381)

Tags

Sightings

Nomenclature