Lucene search
HistoryMar 07, 2007 - 12:19 a.m.
CVE-2007-1288
cve
2007
1288
php
remote file inclusion
webmobo wb news
security vulnerability
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.03 Low
EPSS
Percentile
91.0%
Multiple PHP remote file inclusion vulnerabilities in Webmobo WB News 1.4.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config[installdir] parameter to (1) comment.php, (2) themes.php, (3) directory.php, and (4) sendmsg.php in admin/.
Affected configurations
Node
webmobowbnewsRange≤1.4.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| webmobo:wbnews | webmobo wbnews | le | 1.4.1 |
Related
nvd
nvd
CVE-2007-1288
2007-03-07 00:19:00
CVE-2009-0294
2009-01-27 20:30:05
securityvulns
securityvulns
cvelist
cvelist
CVE-2007-1288
2007-03-07 00:00:00
CVE-2009-0294
2009-01-27 20:00:00
prion
prion
Remote file inclusion
2007-03-07 00:19:00
Remote file inclusion
2009-01-27 20:30:00
cve
cve
CVE-2009-0294
2009-01-27 20:30:05
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.03 Low
EPSS
Percentile
91.0%
Related for CVE-2007-1288