A vulnerability has been found in PcP-Guestbook (the affected version is unknown) and classified as problematic. This vulnerability affects an unknown code of the file faq.php. The manipulation of the argument lang with an unknown input leads to a path traversal vulnerability. The CWE definition for the vulnerability is CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. As an impact it is known to affect confidentiality.

The weakness was disclosed 04/08/2007 (Website). The advisory is available at exploit-db.com. This vulnerability was named CVE-2007-1933. Technical details and also a public exploit are known. This vulnerability is assigned to T1006 by the MITRE ATT&CK project.

A public exploit has been developed by Dj7xpl and been published immediately after the advisory. It is possible to download the exploit at exploit-db.com. It is declared as proof-of-concept. By approaching the search of inurl:faq.php it is possible to find vulnerable targets with Google Hacking.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the databases at X-Force (33491), Exploit-DB (3689) and OSVDB (38461†). The entries VDB-36073 and VDB-86061 are pretty similar. Once again VulDB remains the best source for vulnerability data.

Productinfo

Name

• PcP-Guestbook

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion