CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1255

Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated administrators to execute arbitrary PHP code by uploading a crafted GIF smiley image with a .php extension via the uploadimage parameter to admin.php, which can be later accessed via a direct request for the file in smileys/. NOTE: this can be leveraged with a separate SQL injection issue for remote unauthenticated attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.2%

CVSS Severity

CVSS v2 Score 6.0

References

Products affected by CVE-2007-1255

Connectix » Connectix Boards » Version: 0.4

cpe:2.3:a:connectix:connectix_boards:0.4
Connectix » Connectix Boards » Version: 0.4.1

cpe:2.3:a:connectix:connectix_boards:0.4.1
Connectix » Connectix Boards » Version: 0.4.2

cpe:2.3:a:connectix:connectix_boards:0.4.2
Connectix » Connectix Boards » Version: 0.4.3

cpe:2.3:a:connectix:connectix_boards:0.4.3
Connectix » Connectix Boards » Version: 0.4.4

cpe:2.3:a:connectix:connectix_boards:0.4.4
Connectix » Connectix Boards » Version: 0.5

cpe:2.3:a:connectix:connectix_boards:0.5
Connectix » Connectix Boards » Version: 0.5.1

cpe:2.3:a:connectix:connectix_boards:0.5.1
Connectix » Connectix Boards » Version: 0.5.2

cpe:2.3:a:connectix:connectix_boards:0.5.2
Connectix » Connectix Boards » Version: 0.5.3

cpe:2.3:a:connectix:connectix_boards:0.5.3
Connectix » Connectix Boards » Version: 0.5.4

cpe:2.3:a:connectix:connectix_boards:0.5.4
Connectix » Connectix Boards » Version: 0.5.5

cpe:2.3:a:connectix:connectix_boards:0.5.5
Connectix » Connectix Boards » Version: 0.6

cpe:2.3:a:connectix:connectix_boards:0.6
Connectix » Connectix Boards » Version: 0.6.1

cpe:2.3:a:connectix:connectix_boards:0.6.1
Connectix » Connectix Boards » Version: 0.7

cpe:2.3:a:connectix:connectix_boards:0.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1255

Products

Pricing

Contact Us