This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


CPE Namecpe:/a:e107:e107:0.551:beta
Vendore107First view 2010-04-20
Producte107Last view 2012-02-14
CPE Productcpe:/a:e107:e107

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6 2012-02-14 CVE-2010-5084 Network Medium Requires ...
7.5 2011-11-04 CVE-2011-1513 Network Low None Requ...
4.3 2011-03-15 CVE-2011-0457 Network Medium None Requ...
4.3 2011-03-15 CVE-2010-4757 Network Medium None Requ...
7.5 2010-05-27 CVE-2010-2099 Network Low None Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.5 2010-05-27 CVE-2010-2098 Network Low None Requ...
6 2010-04-20 CVE-2010-0996 Network Medium Requires ...

CWE : Common Weakness Enumeration

40% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
20% (1)CWE-352Cross-Site Request Forgery (CSRF)
20% (1)CWE-264Permissions, Privileges, and Access Controls
20% (1)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...

Open Source Vulnerability Database (OSVDB)

77042e107 CMS install_.php MySQL Server Name Parsing Remote PHP Code Execution
67367e107 submitnews.php submitnews_title Parameter XSS
65243e107 bbcode/ Access Control Check Weakness Arbitrary PHP Code Execution
65056e107 usersettings.php loginname Parameter Blacklist Weakness SQL Injection
63910e107 Crafted .php.filetypesphp Image File Upload Arbitrary PHP Code Execution

OpenVAS Exploits

2010-05-25Name : e107 BBCode Arbitrary PHP Code Execution Vulnerability
File : nvt/gb_e107_40252.nasl
2010-05-04Name : FreeBSD Ports: e107
File : nvt/freebsd_e107.nasl

Nessus® Vulnerability Scanner

2010-05-21Name : The remote web server contains a PHP script that allows arbitrary code execut...
File : e107_bbcode_php_code_execution.nasl - Type : ACT_ATTACK
2010-04-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_a4746a864c8911df83fb0015587e2cc1.nasl - Type : ACT_GATHER_INFO