CVE-2007-0205

Name of the Vulnerable Software and Affected Versions @lex Guestbook versions 4.0.2 and earlier

Description A directory traversal issue exists, allowing remote attackers to create files in arbitrary directories by utilizing ".." sequences in the aj skin and skin edit parameters in the admin/skins.php file. This can be exploited for file inclusion by creating a skin file in the lang directory and then referencing it via the lang parameter to index.php, which bypasses a sanity check in livre include.php.

Recommendations For @lex Guestbook versions 4.0.2 and earlier, consider restricting access to the admin/skins.php file and the aj skin and skin edit parameters until a patch is available. As a temporary workaround, avoid using the aj skin and skin edit parameters in the admin/skins.php file to minimize the risk of exploitation.