CVE-2007-2519
Public Exploits 1
ExploitDB · 1 EDB-30074 [remote]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-2519
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in the installer in PEAR 1.0 through 1.5.3 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the (1) install-as attribute in the file element in package.xml 1.0 or the (2) as attribute in the install element in package.xml 2.0. NOTE: it could be argued that this does not cross privilege boundaries in typical installations, since the code being installed could perform the same actions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PEAR INSTALL-AS属性任意文件覆盖漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PEAR(全称PHP Extension and Application Repository)是PHP Group负责维护的一个PHP扩展及应用的代码仓库。 PEAR的安装属性实现上存在漏洞,本地攻击者可能利用此漏洞覆盖系统文件。 PEAR安装程序没有对package.xml的install-as属性或<install>标签执行验证,允许攻击者向任意位置安装文件,如果PEAR安装程序以特权用户权限运行的话,就可能覆盖关键的系统文件。 用户必须使用PEAR安装程序安装恶意软件包才会受漏洞影响。如果文件包含
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-2519
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-2519
请登录查看更多情报信息。
- http://pear.php.net/news/vulnerability2.phpx_refsource_CONFIRM
- http://pear.php.net/advisory-20070507.txtx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2007-2519
Same Patch Batch · n/a · 2007-05-22 · 37 CVEs total
| CVE-2007-2813 | Cisco IOS SSL连接多个远程拒绝服务漏洞 | |
| CVE-2007-2805 | ClientExec 'Index.PHP' 多个跨站脚本攻击漏洞 | |
| CVE-2007-2806 | GaliX 'Index.PHP' 多个跨站脚本攻击漏洞 | |
| CVE-2007-2807 | Eggdrop服务器模块消息处理远程栈溢出漏洞 | |
| CVE-2007-2808 | Gnatsweb 4.00和Gnats 'gnatsweb.pl'跨站脚本攻击漏洞 | |
| CVE-2007-2809 | Opera 缓冲区溢出漏洞 | |
| CVE-2007-2810 | Gazi Download Portal 'Down_Indir.ASP' SQL注入漏洞 | |
| CVE-2007-2811 | Advance-Flow 跨站脚本攻击漏洞 | |
| CVE-2007-2812 | HLstats 'HLStats.PHP' 多个跨站脚本攻击漏洞 | |
| CVE-2007-2804 | CandyPress Store 'prodList.asp' 跨站脚本攻击漏洞 | |
| CVE-2007-2814 | Pegasus ImagN' ActiveX控件远程栈溢出漏洞 | |
| CVE-2007-2815 | Microsoft IIS Hit Highlighting功能绕过访问认证漏洞 | |
| CVE-2007-2788 | Sun JDK JPG/BMP解析器多个安全漏洞 | |
| CVE-2007-2789 | Sun JDK JPG/BMP解析器多个安全漏洞 | |
| CVE-2007-2790 | VP-ASP Shopping Cart 'shopcontent.asp' 跨站脚本攻击漏洞 | |
| CVE-2007-2791 | HP Tru64有效用户枚举漏洞 | |
| CVE-2007-2792 | Mambo和Joomla! Yet another Newsletter Component 'index.php' SQL注入漏洞 | |
| CVE-2007-2793 | Geeklog 'ImageImageMagick.PHP' 远程文件包含漏洞 | |
| CVE-2007-2825 | Mail Links/Images 'ReadMsg.php' 跨站脚本攻击漏洞 | |
| CVE-2007-2817 | ol'bookmarks 'index.php' SQL注入漏洞 |
Showing top 20 of 37 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2007-2519
No comments yet