Lucene search
HistoryFeb 22, 2007 - 12:28 a.m.
CVE-2007-1059
cve-2007-1059
php
remote file inclusion
ultimate fun book
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.118 Low
EPSS
Percentile
95.4%
PHP remote file inclusion vulnerability in function.php in Ultimate Fun Book 1.02 allows remote attackers to execute arbitrary PHP code via a URL in the gbpfad parameter. NOTE: some sources mention “Ultimate Fun Board,” but this appears to be an error.
Affected configurations
Node
ultimate_fun_bookultimate_fun_bookMatch1.02
| CPE | Name | Operator | Version |
|---|---|---|---|
| ultimate_fun_book:ultimate_fun_book | ultimate fun book | eq | 1.02 |
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Remote file inclusion
2007-02-22 00:28:00
cvelist
cvelist
CVE-2007-1059
2007-02-22 00:00:00
nvd
nvd
CVE-2007-1059
2007-02-22 00:28:00
securityvulns
securityvulns
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.118 Low
EPSS
Percentile
95.4%
Related for CVE-2007-1059