Lucene search

[email protected]CVE-2007-1621

HistoryMar 23, 2007 - 12:19 a.m.

CVE-2007-1621

2007-03-2300:19:00

[email protected]

web.nvd.nist.gov

vulnerability

php

remote file inclusion

apb

cve-2007-1621

security

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

JSON

PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes (APB) 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APB_SETTINGS[template_path] parameter. NOTE: this issue might be related to CVE-2003-1254.

Affected configurations

NVD

Node

lbstoneactive_php_bookmark_notesRange≤0.2.5

CPENameOperatorVersion
lbstone:active_php_bookmark_noteslbstone active php bookmark notesle0.2.5

CPE	Name	Operator	Version
lbstone:active_php_bookmark_notes	lbstone active php bookmark notes	le	0.2.5

References

osvdb.org/37226

www.securityfocus.com/bid/23010

www.vupen.com/english/advisories/2007/1009

exchange.xforce.ibmcloud.com/vulnerabilities/33065

www.exploit-db.com/exploits/3504

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

JSON

Related for CVE-2007-1621

nvd2 cvelist2 prion1 cve1 securityvulns1