Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-2785

EPSS 1.18% · P79
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-2785

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
manage-admins.php in eSyndiCat Pro 1.x allows remote attackers to create additional administrative accounts, and have other unspecified impact, via modified username, new_pass, new_pass2, status, super, and certain other parameters in an add action.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
eSyndiCat Pro 'manage-admins.php'漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
eSyndiCat Pro 中的manage-admins.php文件允许远程攻击者借助添加操作中的修改过的用户名、new_pass、new_pass2、status、super和特定的其他参数,创建额外的管理账户和造成其他未明影响。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-2785

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-2785

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-05-21 · 25 CVEs total

CVE-2007-2786IRCD Ratbox IRC Daemon Pending Connections 拒绝服务攻击漏洞
CVE-2007-2769OPeNDAP BES压缩文件远程命令执行漏洞
CVE-2007-2768OpenSSH OPIE信息泄露漏洞
CVE-2007-2767OPeNDAP文件系统枚举信息泄露漏洞
CVE-2007-2685Jetbox CMS 'index.php'多个SQL注入漏洞
CVE-2007-2684Jetbox CMS version 'opentree.php'多路径破解漏洞
CVE-2007-1355Apache Tomcat Documentation Sample 'hello.jsp' 应用程序多个跨站脚本攻击漏洞
CVE-2003-1329wu-ftpd漏洞 wu-ftpd ftpd.c漏洞
CVE-2007-2772CA BrightStor ARCserve Backup Mediasvr.exe and caloggerd.exe 拒绝服务攻击漏洞
CVE-2007-2771LEAD Technologies LeadTools JPEG 2000 LEADJ2K.LEADJ2K.140 ActiveX控件栈缓冲区溢出漏洞
CVE-2007-2770Eudora SMTP回复存在栈缓冲区溢出漏洞
CVE-2007-2787LeadTools Raster Thumbnail Object Library 栈缓冲区溢出漏洞
CVE-2007-2773Zomplog 'mp3playlist.php' SQL注入漏洞
CVE-2007-2784Globus Toolkit Nexus Globus-Job-Manager远程拒绝服务漏洞
CVE-2007-2783Rational Software Hidden Administrator远程绕过认证漏洞
CVE-2007-2782Packeteer PacketShaper TCP协议栈可预测初始序列号漏洞
CVE-2007-2781WikyBlog 'sessionRegister.php' 跨站脚本攻击漏洞
CVE-2007-2780PsychoStats 'Server.PHP' 路径泄露漏洞
CVE-2007-2779Libstats 'Template_CSV.PHP' 远程文件包含漏洞
CVE-2007-2778MolyX Board 'Index.PHP' 目录遍历漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-2785

No comments yet

Leave a comment