Lucene search
MitreCVE-2007-2092HistoryApr 18, 2007 - 10:19 a.m.
CVE-2007-2092
2007-04-1810:19:00
mitre
web.nvd.nist.gov
33
cve-2007-2092
static code injection
limesoft guestbook
ls simple guestbook
remote code execution
php
vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
72.3%
Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) allows remote attackers to inject arbitrary PHP code into posts.txt via the name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
limesoftlimesoft_guestbookMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| limesoft | limesoft_guestbook | 1.0 | cpe:2.3:a:limesoft:limesoft_guestbook:1.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-2092
2007-04-18 10:00:00
prion
prion
Code injection
2007-04-18 10:19:00
nvd
nvd
CVE-2007-2092
2007-04-18 10:19:00
exploitdb
exploitdb
LS Simple Guestbook 1.0 - Remote Code Execution
2007-04-14 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
72.3%
Related for CVE-2007-2092