{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-02-26T00:00:00", "descriptions": [{"lang": "en", "value": "PHP remote file inclusion vulnerability in downloadcounter.php in STWC-Counter 3.4.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the stwc_counter_verzeichniss parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2007-0754", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0754"}, {"name": "stwccounter-downloadcounter-file-include(32681)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32681"}, {"name": "3379", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/3379"}, {"name": "24280", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24280"}, {"name": "22723", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22723"}, {"name": "33777", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/33777"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-1233", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PHP remote file inclusion vulnerability in downloadcounter.php in STWC-Counter 3.4.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the stwc_counter_verzeichniss parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2007-0754", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0754"}, {"name": "stwccounter-downloadcounter-file-include(32681)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32681"}, {"name": "3379", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/3379"}, {"name": "24280", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24280"}, {"name": "22723", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22723"}, {"name": "33777", "refsource": "OSVDB", "url": "http://osvdb.org/33777"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1233", "datePublished": "2007-03-03T19:00:00", "dateReserved": "2007-03-03T00:00:00", "dateUpdated": "2017-10-10T00:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:*:*:*:*:*:*:*:*", "matchCriteriaId": "1FC0CB51-766B-4AA5-86B4-C261C34E9394", "versionEndIncluding": "3.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.01:*:*:*:*:*:*:*", "matchCriteriaId": "759DB163-8106-42A9-B2EE-1E4BE59F91EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "86DBCF89-2F3D-4976-8C47-0B7A7D29C59F", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "FF368CA8-C766-439F-B6C2-3BC7CEB1EB78", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.02:*:*:*:*:*:*:*", "matchCriteriaId": "36B2BBC3-D6FA-4BF9-A4CA-701EC4232210", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.11:*:*:*:*:*:*:*", "matchCriteriaId": "85CB9D8D-FCD8-4A97-A7FE-067892F6547A", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.12:*:*:*:*:*:*:*", "matchCriteriaId": "7CC3BA5E-4F09-44FC-9515-24000CD03724", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.21:*:*:*:*:*:*:*", "matchCriteriaId": "8C94B981-4E8E-4326-AEE6-04B5EBEE7F5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:1.22:*:*:*:*:*:*:*", "matchCriteriaId": "FC8EE36C-11A1-4C88-B2E6-11A31BC8D7F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "DC9A4763-5DCD-4287-BA3B-F1B787C0467E", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "EABC3607-7223-4253-8F67-B94B7145F87A", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E70B7654-5864-49CC-BEE5-42521B8F1913", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9B3166D1-E31F-4DF3-86A1-C4941089B934", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "776DA573-50BD-4804-93FF-6B6397929673", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "51A3D042-B40A-41D8-946C-0944659B281D", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "2C0C29CC-ECDB-4858-A7C9-B21A0B447EA0", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "80D5D7A9-D518-4273-872D-969AE9733812", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "BA1EBE50-2E60-4917-81A1-0223D579432B", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "303A29AB-E743-475D-95D6-E4C07ED6EA95", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "B24661EC-1EE0-4D0F-824B-075247124239", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "7075FA8B-FDF9-4D5D-A803-48B35532E15D", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "84F50375-BD21-47F0-88FF-ACB8C81AA2C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "7071060E-E8F2-4655-906C-1791505F4BBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "04B06EB5-C6C1-47EA-A582-A8134E4DA700", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "4B3E3472-C6C7-410D-858C-9D86C1DD1077", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "0C1327B3-ADA7-47E1-9947-8CA8C6F2BA16", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "07A80D76-BDC9-4FDB-A649-8DFFDDBFC500", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "1C5CD2F4-BD0D-4BC4-B19A-FC60700F4C87", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "5B3A2978-A4E5-41AA-B3EF-8F00F5D72AFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "C1ABC149-FBA6-4421-A6E6-DF88BAF5E2F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "019B9A7E-4F78-40A9-8742-76755877C9F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "349EEBF6-6677-4CB2-B522-35F71688A928", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "04A091CF-22B1-4FE6-BFEA-D5FAA4FA7AB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "9A527D50-A6BE-4EA4-9414-2CB12180DDF6", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.6.6:*:*:*:*:*:*:*", "matchCriteriaId": "7DCEDABE-70F1-4C18-B28B-B5DDACDC5059", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "8C6F6DC7-B8AC-451A-814F-24E76C7A9173", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "75A7C28B-20BC-4BF8-85CB-30FEA0F1266C", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "8EA06A78-DCE2-4E5F-9770-3F492A6DC549", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "D0EF9BAF-6370-474A-9B9A-AA97AD79C7ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "2C8168E8-23A3-42B0-9133-ED8E4D15F09E", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:2.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "65F23B35-B879-492A-9EB9-A69D1454E7AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "A89BC618-A62B-4627-9001-5F8C66FDA00C", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "91E46F97-6C8C-416C-BD1C-22675DA82A2B", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E006EF2A-3599-485C-9DFC-D9B6D0B8D66B", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "B9D34793-ED1A-4237-A125-D10CF6390842", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5A405D5F-77EF-4C47-B90A-90538475D5AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "43DDF511-830A-4C4E-82A0-FFF6F7AAA39D", "vulnerable": true}, {"criteria": "cpe:2.3:a:stwc-counter:stwc-counter:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "F9526536-68C2-4356-8AB9-B6A019E95868", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "PHP remote file inclusion vulnerability in downloadcounter.php in STWC-Counter 3.4.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the stwc_counter_verzeichniss parameter."}, {"lang": "es", "value": "Vulnerabilidad PHP de inclusi\u00f3n remota de archivo en downloadcounter.php en STWC-Counter 3.4.0.0 y anteriores permite a atacantes remotos ejecutar c\u00f3digo PHP de su elecci\u00f3n a trav\u00e9s de una URL en el par\u00e1metro stwc_counter_verzeichniss."}], "id": "CVE-2007-1233", "lastModified": "2017-10-11T01:31:47.970", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-03-03T19:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/33777"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/24280"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/22723"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/0754"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32681"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/3379"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}