CVE-2007-1340 | Weltennetz News-Letterman 1.1 eintrag.php sqllog file inclusion (EDB-3406 / XFDB-32787)

8月 25, 2024
7:56 pm

A vulnerability, which was classified as critical, was found in Weltennetz News-Letterman 1.1. Affected is an unknown function of the file eintrag.php. The manipulation of the argument sqllog leads to file inclusion.

This vulnerability is traded as CVE-2007-1340. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2007-1340 | Weltennetz News-Letterman 1.1 eintrag.php sqllog file inclusion (EDB-3406 / XFDB-32787)

Elvescore.io

Recent Posts

CVE-2024-10000 – Masteriyo LMS – WordPress Stored Cross-Site Scripting (XSS)

CVE-2024-10008 – Masteriyo LMS WordPress Plugin Role Escalation Vulnerability

CVE-2024-10479 – LinZhaoguan pb-cms Theme Management Module Remote Cross-Site Scripting Vulnerability

CVE-2024-22065 – “ZTE MF258 Pro Command Injection Vulnerability”

CVE-2024-10477 – LinZhaoguan pb-cms Cross-Site Scripting Vulnerability

CVE-2024-10478 – LinZhaoguan pb-cms Cross Site Scripting Vulnerability

CVE-2007-1340 | Weltennetz News-Letterman 1.1 eintrag.php sqllog file inclusion (EDB-3406 / XFDB-32787)

CVE-2007-1340 | Weltennetz News-Letterman 1.1 eintrag.php sqllog file inclusion (EDB-3406 / XFDB-32787)