Lucene search

[email protected]CVE-2007-0682

HistoryFeb 03, 2007 - 1:28 a.m.

CVE-2007-0682

2007-02-0301:28:00

[email protected]

web.nvd.nist.gov

cve-2007-0682

php

remote file inclusion

jv2 folder gallery 3.0.2

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.1 Low

EPSS

Percentile

95.0%

JSON

PHP remote file inclusion vulnerability in theme/include_mode/template.php in JV2 Folder Gallery 3.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the galleryfilesdir parameter.

Affected configurations

NVD

Node

jv2folder_galleryRange≤3.0.2

CPENameOperatorVersion
jv2:folder_galleryjv2 folder galleryle3.0.2

CPE	Name	Operator	Version
jv2:folder_gallery	jv2 folder gallery	le	3.0.2

References

osvdb.org/33077

secunia.com/advisories/24012

www.securityfocus.com/bid/22354

www.vupen.com/english/advisories/2007/0447

exchange.xforce.ibmcloud.com/vulnerabilities/32043

www.exploit-db.com/exploits/3240

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.1 Low

EPSS

Percentile

95.0%

JSON

Related for CVE-2007-0682

cvelist1 prion1 nvd1 securityvulns1