Lucene search

[email protected]CVE-2007-2094

HistoryApr 18, 2007 - 10:19 a.m.

CVE-2007-2094

2007-04-1810:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2094

php

remote file inclusion

anthologia 0.5.2

security vulnerability

nvd

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.153 Low

EPSS

Percentile

95.8%

JSON

PHP remote file inclusion vulnerability in index.php in Anthologia 0.5.2 allows remote attackers to execute arbitrary PHP code via a URL in the ads_file parameter.

CPENameOperatorVersion
anthologia:anthologiaanthologiaeq0.5.2

CPE	Name	Operator	Version
anthologia:anthologia	anthologia	eq	0.5.2

References

secunia.com/advisories/24908

www.osvdb.org/34083

www.securityfocus.com/bid/23524

www.vupen.com/english/advisories/2007/1427

exchange.xforce.ibmcloud.com/vulnerabilities/33705

www.exploit-db.com/exploits/3751

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.153 Low

EPSS

Percentile

95.8%

JSON

Related for CVE-2007-2094

prion1