Geeklog <= 2.0 BaseView.php glConf Parameter Remote File Inclusion

medium Nessus Network Monitor Plugin ID 3900

Synopsis

The remote host is vulnerable to a 'file upload' flaw.

Description

The remote host is running Geeklog, an open-source weblog powered by PHP and MySQL. The version of Geeklog installed on the remote host includes a flaw in the way that it parses user-supplied data. Specifically, the 'glConf' parameter of the 'BaseView.php' script can be used by a remote attacker to upload and execute arbitrary script code. An attacker exploiting this flaw would be able to execute code with the permissions of the web server process.

Solution

Upgrade to a version higher than 2.0.

See Also

http://geeklog.sourceforge.net

Plugin Details

Severity: Medium

ID: 3900

Family: CGI

Published: 2/6/2007

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 5.2

Vector: CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 6.3

Temporal Score: 6

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:F/RL:W/RC:X

Vulnerability Information

CPE: cpe:/a:geeklog:geeklog

Reference Information

CVE: CVE-2007-0810

BID: 22386