CVE-2007-4948 - Vulnerability Details - OpenCVE

Multiple PHP remote file inclusion vulnerabilities in Webmedia Explorer (webmex) 3.2.2 allow remote attackers to execute arbitrary PHP code via (1) a URL in the path_include parameter to includes/rss.class.php, (2) a URL in the path_template parameter to (a) templates/main.tpl.php or (b) templates/folder_messages_link_message_name.tpl.php, or (4) a URL in the path_templates parameter to templates/sidebar.tpl.php. NOTE: the vulnerability is present only when the administrator does not follow installation instructions about the requirement for .htaccess support. NOTE: the includes/core.lib.php vector is already covered by CVE-2006-5252.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Webmedia Explorer	Webmedia Explorer

Configuration 1 [-]

cpe:2.3:a:webmedia_explorer:webmedia_explorer:3.2.2:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/
http://osvdb.org/43140
http://osvdb.org/43141
http://osvdb.org/43142
http://osvdb.org/43143

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-09-18T20:00:00

Updated: 2024-08-07T15:17:27.818Z

Reserved: 2007-09-18T00:00:00

Link: CVE-2007-4948

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-09-18T20:17:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-4948

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-09-14T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple PHP remote file inclusion vulnerabilities in Webmedia Explorer (webmex) 3.2.2 allow remote attackers to execute arbitrary PHP code via (1) a URL in the path_include parameter to includes/rss.class.php, (2) a URL in the path_template parameter to (a) templates/main.tpl.php or (b) templates/folder_messages_link_message_name.tpl.php, or (4) a URL in the path_templates parameter to templates/sidebar.tpl.php. NOTE: the vulnerability is present only when the administrator does not follow installation instructions about the requirement for .htaccess support. NOTE: the includes/core.lib.php vector is already covered by CVE-2006-5252."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-11-15T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "43142", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/43142"}, {"tags": ["x_refsource_MISC"], "url": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/"}, {"name": "43143", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/43143"}, {"name": "43140", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/43140"}, {"name": "43141", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/43141"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2007-4948", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple PHP remote file inclusion vulnerabilities in Webmedia Explorer (webmex) 3.2.2 allow remote attackers to execute arbitrary PHP code via (1) a URL in the path_include parameter to includes/rss.class.php, (2) a URL in the path_template parameter to (a) templates/main.tpl.php or (b) templates/folder_messages_link_message_name.tpl.php, or (4) a URL in the path_templates parameter to templates/sidebar.tpl.php. NOTE: the vulnerability is present only when the administrator does not follow installation instructions about the requirement for .htaccess support. NOTE: the includes/core.lib.php vector is already covered by CVE-2006-5252."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "43142", "refsource": "OSVDB", "url": "http://osvdb.org/43142"}, {"name": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/", "refsource": "MISC", "url": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/"}, {"name": "43143", "refsource": "OSVDB", "url": "http://osvdb.org/43143"}, {"name": "43140", "refsource": "OSVDB", "url": "http://osvdb.org/43140"}, {"name": "43141", "refsource": "OSVDB", "url": "http://osvdb.org/43141"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:17:27.818Z"}, "title": "CVE Program Container", "references": [{"name": "43142", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/43142"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/"}, {"name": "43143", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/43143"}, {"name": "43140", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/43140"}, {"name": "43141", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/43141"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-4948", "datePublished": "2007-09-18T20:00:00", "dateReserved": "2007-09-18T00:00:00", "dateUpdated": "2024-08-07T15:17:27.818Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:webmedia_explorer:webmedia_explorer:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "D42C8E41-C153-41CF-A815-0F0B4872213E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple PHP remote file inclusion vulnerabilities in Webmedia Explorer (webmex) 3.2.2 allow remote attackers to execute arbitrary PHP code via (1) a URL in the path_include parameter to includes/rss.class.php, (2) a URL in the path_template parameter to (a) templates/main.tpl.php or (b) templates/folder_messages_link_message_name.tpl.php, or (4) a URL in the path_templates parameter to templates/sidebar.tpl.php. NOTE: the vulnerability is present only when the administrator does not follow installation instructions about the requirement for .htaccess support. NOTE: the includes/core.lib.php vector is already covered by CVE-2006-5252."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inclusi\u00f3n remota de archivo en PHP en Webmedia Explorer (webmex) 3.2.2 permiten a atacantes remotos ejecutar c\u00f3digo PHP de su elecci\u00f3n (1) mediante un URL en el par\u00e1metro path_include de includes/rss.class.php, (2) un URL en el par\u00e1metro path_template de (a) tempaltes/main.tpl.php o (b) templates/folder_messages_link_message_name.tpl. o (4) un URL en el par\u00e1metro path_templates de templates/sidebar.tpl.php. NOTA: la vulnerabilidad est\u00e1 presente s\u00f3lo cuando el administrador no sigue las instrucciones de instalaci\u00f3n sobre el requisito para soporte de .htaccess. NOTA: el vector includes/core.lib.php est\u00e1 ya cubierto por CVE-2006-5252."}], "id": "CVE-2007-4948", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-09-18T20:17:00.000", "references": [{"source": "[email protected]", "url": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/"}, {"source": "[email protected]", "url": "http://osvdb.org/43140"}, {"source": "[email protected]", "url": "http://osvdb.org/43141"}, {"source": "[email protected]", "url": "http://osvdb.org/43142"}, {"source": "[email protected]", "url": "http://osvdb.org/43143"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://arfis.wordpress.com/2007/09/14/rfi-03-webmedia-explorer/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/43140"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/43141"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/43142"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/43143"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "[email protected]", "type": "Primary"}]}