CVE-2007-2481
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-2481
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
PHP remote file inclusion vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress wordTube插件文件包含漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress是一款免费的论坛Blog系统,wp-Table和wordTube都是其中常用的插件。 WordPress的wp-Table和wordTube插件实现上存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上执行任意命令。 wordTube插件中wordtube-button.php文件没有正确验证wpPATH参数的输入,允许攻击者通过包含本地或外部资源的任意文件导致执行任意命令。漏洞代码如下: ----------------wordtube-button.php--------------
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-2481
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-2481
Please Login to view more intelligence information
- http://alexrabe.boelinger.com/x_refsource_CONFIRM
- http://advisories.echo.or.id/adv/adv81-K-159-2007.txtx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2007-2481
Same Patch Batch · n/a · 2007-05-03 · 13 CVEs total
| CVE-2007-2489 | LiveData Protocol Server WSDL Files 远程缓冲区溢出漏洞 | |
| CVE-2007-2490 | LiveData Servers COTP包 拒绝服务漏洞 | |
| CVE-2007-2480 | Linux kernel 'udp.c' 安全漏洞 | |
| CVE-2007-2482 | WordPress 插件远程文件包含输入验证漏洞 | |
| CVE-2007-2483 | WordPress wp-Table插件远程文件包含漏洞 | |
| CVE-2007-2484 | WordPress多个插件远程文件包含漏洞 | |
| CVE-2007-2485 | Wordpress Myflash Plugin wpPATH参数远程文件包含漏洞 | |
| CVE-2007-2486 | Motobit 'download.asp' 目录遍历漏洞 | |
| CVE-2007-2487 | Atomix MP3 畸形MP3文件缓冲区溢出漏洞 | |
| CVE-2007-2479 | Cerulean Studios Trillian IRC Module CTCP PING信息UTF-8漏洞 | |
| CVE-2007-2477 | phpMyChat 'phpMyChat.php3'远程文件包含漏洞 | |
| CVE-2007-2478 | Cerulean Studios Trillian IRC Module UTF-8缓冲区溢出漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8248
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han
V. Comments for CVE-2007-2481
No comments yet