FKIE_CVE-2007-0261

Vulnerability from fkie_nvd - Published: 2007-01-16 23:28 - Updated: 2025-04-09 00:30
Severity ?
Summary
snews.php in sNews 1.5.30 and earlier does not properly exit when authentication fails, which allows remote attackers to perform unauthorized administrative actions, as demonstrated by changing an administrative password via the changeup task, and by uploading PHP code via the imagefile parameter.
References
cve@mitre.orghttp://osvdb.org/32817
cve@mitre.orghttp://secunia.com/advisories/23746
cve@mitre.orghttp://www.securityfocus.com/bid/22025
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/31535
cve@mitre.orghttps://www.exploit-db.com/exploits/3116
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/32817
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23746
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/22025
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/31535
af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/3116
Impacted products
Vendor Product Version
snews snews 1.5.29
snews snews 1.5.30
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:snews:snews:1.5.29:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CDD2160-EFDD-487B-A896-CD0A270F54C6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:snews:snews:1.5.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "92B2732D-7DE1-4549-8811-8B7A0ACC5509",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "snews.php in sNews 1.5.30 and earlier does not properly exit when authentication fails, which allows remote attackers to perform unauthorized administrative actions, as demonstrated by changing an administrative password via the changeup task, and by uploading PHP code via the imagefile parameter."
    },
    {
      "lang": "es",
      "value": "snews.php en sNews 1.5.30 y anteriores no finaliza adecuadamente cuando falla la autenticaci\u00f3n, lo cual permite a atacantes remotos llevar a cabo acciones administrativas no autorizadas, como ha sido demostrado cambiando una contrase\u00f1a administrativa mediante la tarea changeup, y subiendo c\u00f3digo PHP mediante el par\u00e1metro imagefile."
    }
  ],
  "id": "CVE-2007-0261",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-01-16T23:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/32817"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23746"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/22025"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31535"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/3116"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/32817"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23746"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/22025"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31535"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/3116"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.