Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-1018
HistoryFeb 21, 2007 - 11:28 a.m.

CVE-2007-1018

2007-02-2111:28:00
mitre
web.nvd.nist.gov
21
cve-2007-1018
php
remote file inclusion
vulnerability
virtualsystem
vs-news-system

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.005

Percentile

76.2%

JSON

PHP remote file inclusion vulnerability in tpl/header.php in VirtualSystem VS-News-System 1.2.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd
Node
virtualsystemvs-news-systemRange1.2.1
VendorProductVersionCPE
virtualsystemvs-news-system*cpe:2.3:a:virtualsystem:vs-news-system:*:*:*:*:*:*:*:*

Related

nvd 1
cvelist 1
prion 1
securityvulns 1
nvd
nvd
CVE-2007-1018
2007-02-21 11:28:00
cvelist
cvelist
CVE-2007-1018
2007-02-21 11:00:00
prion
prion
Remote file inclusion
2007-02-21 11:28:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-02-19 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.005

Percentile

76.2%

JSON
Related for CVE-2007-1018
nvd1cvelist1prion1securityvulns1