CVE-2007-1906

Ecardmax.com Hot Editor - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in richedit/keyboard.php in eCardMAX HotEditor (Hot Editor) 4.0, and the HotEditor plugin for MyBB, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the first parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Liz0ziM · perlwebappsphp

https://www.exploit-db.com/exploits/29827

View Code ZIP pw:eip

References (10)

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/23377

[Exploit] http://www.expw0rm.com/hot-editor-v40-local-file-inclusion_no113.html

[Exploit] http://www.expw0rm.com/mybb-hot-editor-plugin-local-file-inclusion_no114.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/33521

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/1315

[Third Party Advisory] http://secunia.com/advisories/24825

[Third Party Advisory, VDB Entry] http://osvdb.org/34776

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/465092/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/465094/100/0/threaded

[Third Party Advisory] http://securityreason.com/securityalert/2533

Scores

EPSS 0.1559

EPSS Percentile 94.7%

Details

Status published

Products (2)

ecardmax.com/hot_editor 4.0

mybb/mybb_hot_editor_plugin

Published Apr 10, 2007

Tracked Since Feb 18, 2026