CVE-2007-6652

Published: Jan 4, 2008Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

cpie.php in XCMS 1.83 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct direct static code injection attacks and execute arbitrary code via the testo_0 parameter in a cpie admin action to index.php, which writes to dati/generali/footer.dtb (aka the XCMS footer).

Affected (1)

Products: Xcms: Xcms

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Xcms Xcms	Up to 1.83

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (8)

http://osvdb.org/40277

Source: cve@mitre.org

http://secunia.com/advisories/28256

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/39346

Source: cve@mitre.org

https://www.exploit-db.com/exploits/4813

Source: cve@mitre.org

http://osvdb.org/40277

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28256

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/39346

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/4813

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.