CVE-2007-6652

Name of the Vulnerable Software and Affected Versions XCMS versions 1.83 and earlier

Description The issue allows remote attackers to conduct direct static code injection attacks and execute arbitrary code via the testo 0 parameter in a cpie admin action to "index.php", which writes to "dati/generali/footer.dtb" (aka the XCMS footer). This occurs because "cpie.php" sends a redirect to the web browser but does not exit.

Recommendations For XCMS versions 1.83 and earlier, avoid using the testo 0 parameter in the cpie admin action to "index.php" until a fix is available. As a temporary workaround, consider restricting write access to "dati/generali/footer.dtb" to minimize the risk of exploitation.