CVE-2008-7123

EPSS 1.83% · P83 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-7123

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Static code injection vulnerability in admin/configuration/modifier.php in zKup CMS 2.0 through 2.3 allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte (%00) in the login parameter in an ajout action, which bypasses the regular expression check.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

zKup 'admin/configuration/modifier.php' 静态代码注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

zKup CMS 2.0到2.3版本中的admin/configuration/modifier.php存在静态代码注入漏洞。远程攻击者可以借助ajout操作中的login参数里的一个空byte(%00)，注入任意的PHP代码到fichiers/config.php。它会绕过日常的表述检查。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-7123

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-7123

Please Login to view more intelligence information

http://www.zkup.fr/actualite-zkup/maj-critique-v203v204.htmlx_refsource_CONFIRM
https://www.exploit-db.com/exploits/5220exploitx_refsource_EXPLOIT-DB
http://secunia.com/advisories/29276third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/43082vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/28149vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2008-7123

Same Patch Batch · n/a · 2009-08-31 · 28 CVEs total

CVE-2009-3016		Apple Safari 跨站脚本攻击漏洞
CVE-2008-7131		Peter_Kohlmann DB2 Monitoring Console 非授权访问漏洞
CVE-2008-7130		Peter_Kohlmann DB2 Monitoring Console任意文件上传安全漏洞
CVE-2008-7129		xyssl 资源管理错误漏洞
CVE-2008-7128		XySSL ssl_parse_client_key_exchange函数权限许可和访问控制漏洞
CVE-2008-7127		Microfocus Borland VisiBroker Smart Agent 'osagent.exe'资源管理错误漏洞
CVE-2008-7126		Microfocus Borland VisiBroker Smart Agent 'osagent.exe'整数溢出漏洞
CVE-2008-7125		ariadne_cms操作系统命令注入漏洞
CVE-2008-7124		zKup 'admin/configuration/modifier.php' 身份认证绕过漏洞
CVE-2008-7122		Evansprogramming Registry Pro 'epRegPro.ocx' ActiveX控件不安全方式和缓冲区溢出漏洞
CVE-2009-3020		Microsoft Windows OpenType字体引擎拒绝服务漏洞
CVE-2009-3019		Microsoft Internet 浏览器代码注入漏洞
CVE-2009-3018		maxthon maxthon_browser 跨站脚本攻击漏洞
CVE-2009-3017		Orca Browser跨站脚本攻击漏洞
CVE-2009-2944		ikiwiki teximg插件黑名单不完全漏洞
CVE-2009-3015		qtweb 跨站脚本攻击漏洞
CVE-2009-3014		mozilla 跨站脚本攻击漏洞
CVE-2009-3013		opera opera_browser 跨站脚本攻击漏洞
CVE-2009-3012		mozilla firefox 跨站脚本攻击漏洞
CVE-2009-3011		google chrome 跨站脚本攻击漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-7123

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-7123

I. Basic Information for CVE-2008-7123

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-7123

III. Intelligence Information for CVE-2008-7123

Same Patch Batch · n/a · 2009-08-31 · 28 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-7123

Leave a comment