CVE-2007-1129 - Vulnerability Details - OpenCVE

Multiple unrestricted file upload vulnerabilities in MTCMS 3.2 allow remote attackers to upload and execute files via (1) an avatar upload in an add_down action, or (2) an add_link action.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mtcms	Mtcms

Configuration 1 [-]

cpe:2.3:a:mtcms:mtcms:3.2:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/33778
http://www.securityfocus.com/archive/1/461330/100/100/threaded
http://www.securityfocus.com/bid/22690
http://www.vupen.com/english/advisories/2007/0755

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-02-27T02:00:00

Updated: 2024-08-07T12:43:22.545Z

Reserved: 2007-02-26T00:00:00

Link: CVE-2007-1129

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-02-27T02:28:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-1129

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-02-23T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple unrestricted file upload vulnerabilities in MTCMS 3.2 allow remote attackers to upload and execute files via (1) an avatar upload in an add_down action, or (2) an add_link action."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20070223 MTCMS multiple upload vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/461330/100/100/threaded"}, {"name": "22690", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22690"}, {"name": "ADV-2007-0755", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0755"}, {"name": "33778", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/33778"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2007-1129", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unrestricted file upload vulnerabilities in MTCMS 3.2 allow remote attackers to upload and execute files via (1) an avatar upload in an add_down action, or (2) an add_link action."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20070223 MTCMS multiple upload vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/461330/100/100/threaded"}, {"name": "22690", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22690"}, {"name": "ADV-2007-0755", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0755"}, {"name": "33778", "refsource": "OSVDB", "url": "http://osvdb.org/33778"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:43:22.545Z"}, "title": "CVE Program Container", "references": [{"name": "20070223 MTCMS multiple upload vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/461330/100/100/threaded"}, {"name": "22690", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/22690"}, {"name": "ADV-2007-0755", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/0755"}, {"name": "33778", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/33778"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1129", "datePublished": "2007-02-27T02:00:00", "dateReserved": "2007-02-26T00:00:00", "dateUpdated": "2024-08-07T12:43:22.545Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mtcms:mtcms:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "ABF618A1-009D-4687-A1F9-A08890D524B2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple unrestricted file upload vulnerabilities in MTCMS 3.2 allow remote attackers to upload and execute files via (1) an avatar upload in an add_down action, or (2) an add_link action."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de carga de archivos sin restricciones en MTCMS versiones 3.2, permiten a los atacantes remotos cargar y ejecutar archivos por medio de (1) una carga de avatar en una acci\u00f3n add_down, o (2) una acci\u00f3n add_link."}], "evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/434.html 'CWE-434: Unrestricted Upload of File with Dangerous Type'", "id": "CVE-2007-1129", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-02-27T02:28:00.000", "references": [{"source": "[email protected]", "url": "http://osvdb.org/33778"}, {"source": "[email protected]", "url": "http://www.securityfocus.com/archive/1/461330/100/100/threaded"}, {"source": "[email protected]", "url": "http://www.securityfocus.com/bid/22690"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2007/0755"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/33778"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/461330/100/100/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/22690"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2007/0755"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "[email protected]", "type": "Primary"}]}