Lucene search
HistoryFeb 21, 2007 - 11:28 a.m.
CVE-2007-1032
cve-2007-1032
phpmyfaq
vulnerability
file upload
remote attack
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.6%
Unspecified vulnerability in phpMyFAQ 1.6.9 and earlier, when register_globals is enabled, allows remote attackers to “gain the privilege for uploading files on the server.”
Affected configurations
Node
phpmyfaqphpmyfaqRange≤1.6.9
ORphpmyfaqphpmyfaqMatch0.60
ORphpmyfaqphpmyfaqMatch0.65
ORphpmyfaqphpmyfaqMatch0.70
ORphpmyfaqphpmyfaqMatch0.80
ORphpmyfaqphpmyfaqMatch0.80a
ORphpmyfaqphpmyfaqMatch0.85
ORphpmyfaqphpmyfaqMatch0.86
ORphpmyfaqphpmyfaqMatch0.87
ORphpmyfaqphpmyfaqMatch0.90
ORphpmyfaqphpmyfaqMatch0.95
ORphpmyfaqphpmyfaqMatch0.666
ORphpmyfaqphpmyfaqMatch1.0
ORphpmyfaqphpmyfaqMatch1.0.1
ORphpmyfaqphpmyfaqMatch1.0.1a
ORphpmyfaqphpmyfaqMatch1.1.0
ORphpmyfaqphpmyfaqMatch1.1.1
ORphpmyfaqphpmyfaqMatch1.1.2
ORphpmyfaqphpmyfaqMatch1.1.3
ORphpmyfaqphpmyfaqMatch1.1.4
ORphpmyfaqphpmyfaqMatch1.1.4a
ORphpmyfaqphpmyfaqMatch1.1.5
ORphpmyfaqphpmyfaqMatch1.2.0
ORphpmyfaqphpmyfaqMatch1.2.1
ORphpmyfaqphpmyfaqMatch1.2.2
ORphpmyfaqphpmyfaqMatch1.2.3
ORphpmyfaqphpmyfaqMatch1.2.4
ORphpmyfaqphpmyfaqMatch1.2.5
ORphpmyfaqphpmyfaqMatch1.2.5a
ORphpmyfaqphpmyfaqMatch1.2.5b
ORphpmyfaqphpmyfaqMatch1.3.0
ORphpmyfaqphpmyfaqMatch1.3.1
ORphpmyfaqphpmyfaqMatch1.3.2
ORphpmyfaqphpmyfaqMatch1.3.3
ORphpmyfaqphpmyfaqMatch1.3.4
ORphpmyfaqphpmyfaqMatch1.3.5
ORphpmyfaqphpmyfaqMatch1.3.6
ORphpmyfaqphpmyfaqMatch1.3.7
ORphpmyfaqphpmyfaqMatch1.3.8
ORphpmyfaqphpmyfaqMatch1.3.9
ORphpmyfaqphpmyfaqMatch1.3.9pl1
ORphpmyfaqphpmyfaqMatch1.3.10
ORphpmyfaqphpmyfaqMatch1.3.11
ORphpmyfaqphpmyfaqMatch1.3.12
ORphpmyfaqphpmyfaqMatch1.3.13
ORphpmyfaqphpmyfaqMatch1.3.14
ORphpmyfaqphpmyfaqMatch1.4.0
ORphpmyfaqphpmyfaqMatch1.4.0a
ORphpmyfaqphpmyfaqMatch1.4.1
ORphpmyfaqphpmyfaqMatch1.4.2
ORphpmyfaqphpmyfaqMatch1.4.3
ORphpmyfaqphpmyfaqMatch1.4.4
ORphpmyfaqphpmyfaqMatch1.4.5
ORphpmyfaqphpmyfaqMatch1.4.6
ORphpmyfaqphpmyfaqMatch1.4.7
ORphpmyfaqphpmyfaqMatch1.4.8
ORphpmyfaqphpmyfaqMatch1.4.9
ORphpmyfaqphpmyfaqMatch1.4.10
ORphpmyfaqphpmyfaqMatch1.4.11
ORphpmyfaqphpmyfaqMatch1.5.0
ORphpmyfaqphpmyfaqMatch1.5.1
ORphpmyfaqphpmyfaqMatch1.5.2
ORphpmyfaqphpmyfaqMatch1.5.3
ORphpmyfaqphpmyfaqMatch1.5.4
ORphpmyfaqphpmyfaqMatch1.5.5
ORphpmyfaqphpmyfaqMatch1.5.6
ORphpmyfaqphpmyfaqMatch1.5.7
ORphpmyfaqphpmyfaqMatch1.5.8
ORphpmyfaqphpmyfaqMatch1.5.9
ORphpmyfaqphpmyfaqMatch1.6.0
ORphpmyfaqphpmyfaqMatch1.6.1
ORphpmyfaqphpmyfaqMatch1.6.2
ORphpmyfaqphpmyfaqMatch1.6.3
ORphpmyfaqphpmyfaqMatch1.6.4
ORphpmyfaqphpmyfaqMatch1.6.5
ORphpmyfaqphpmyfaqMatch1.6.6
ORphpmyfaqphpmyfaqMatch1.6.7
ORphpmyfaqphpmyfaqMatch1.6.8
Related
nessus
nessus
phpMyFAQ < 1.6.10 Multiple Script Arbitrary File Upload
2007-02-20 00:00:00
nvd
nvd
CVE-2007-1032
2007-02-21 11:28:00
prion
prion
Code injection
2007-02-21 11:28:00
cvelist
cvelist
CVE-2007-1032
2007-02-21 11:00:00
securityvulns
securityvulns
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.6%
Related for CVE-2007-1032