CVE-2007-6083
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-6083
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
SQL injection vulnerability in admin/index.php in IceBB 1.0-rc6 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IceBB HTTP_X_FORWARDED_FOR远程SQL注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IceBB是一个基于PHP+MySQL的开源论坛系统。 IceBB处理畸形用户请求时存在输入验证漏洞,远程攻击者可能利用此漏洞执行SQL注入攻击,非授权操作数据库。 IceBB的index.php脚本没有正确地验证对X-Forwarded-For HTTP头的输入。在/includes/functions.php文件的73行: $ip = empty($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['REMOTE_ADDR'] : $_SERVER['HTTP_X
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-6083
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-6083
Please Login to view more intelligence information
- http://www.aeroxteam.fr/advisory-IceBB-1.0rc6.txtx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2007-6083
Same Patch Batch · n/a · 2007-11-22 · 18 CVEs total
| CVE-2007-6091 | JiRo's Banner System Login.ASP 多个SQL注入漏洞 | |
| CVE-2007-6099 | Ingate Firewall/SIParator 远程未验证操作漏洞 | |
| CVE-2007-6098 | Ingate Firewall和SIParator远程身份验证漏洞 | |
| CVE-2007-6097 | Ingate Firewall和SIParator ICMP未明安全漏洞 | |
| CVE-2007-6096 | Ingate Firewall和SIParator 敏感信息泄露漏洞 | |
| CVE-2007-6095 | Ingate Firewall和SIParator SIP组件信息泄露漏洞 | |
| CVE-2007-6094 | Ingate Firewall和SIParator IPSec拒绝服务攻击漏洞 | |
| CVE-2007-6093 | Ingate Firewall和SIParator SRTP组件拒绝服务攻击漏洞 | |
| CVE-2007-6092 | Ingate Firewall和SIParator libsrtp库缓冲区溢出漏洞 | |
| CVE-2007-6082 | Sciurus Hosting Panel 'acp/savenews.php' 直接静态代码注入漏洞 | |
| CVE-2007-6090 | Nuked-Klan index.php 跨站脚本攻击漏洞 | |
| CVE-2007-6089 | meBiblio Index.PHP 远程文件包含漏洞 | |
| CVE-2007-6088 | phpBBViet 'includes/functions_mod_user.php' 远程文件包含漏洞 | |
| CVE-2007-6087 | Vigile CMS index.php 跨站请求伪造漏洞 | |
| CVE-2007-6086 | Vigile CMS index.php 目录遍历漏洞 | |
| CVE-2007-6085 | Vigile CMS index.php 多个跨站脚本攻击漏洞 | |
| CVE-2007-6084 | HotScripts Clone Script SOFTWARE-DESCRIPTION.PHP SQL注入漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem - CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin
V. Comments for CVE-2007-6083
No comments yet