Lucene search
HistoryMay 03, 2007 - 5:19 p.m.
CVE-2007-2485
cve
2007
2485
php
remote file inclusion
vulnerability
myflash
wordpress
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.089 Low
EPSS
Percentile
94.6%
PHP remote file inclusion vulnerability in myflash-button.php in the myflash 1.00 and earlier plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Affected configurations
Node
ruben_boelingermyflashRange≤1.00
| CPE | Name | Operator | Version |
|---|---|---|---|
| ruben_boelinger:myflash | ruben boelinger myflash | le | 1.00 |
Related
canvas
canvas
Immunity Canvas: WPFLASH_INCLUDE
2007-05-03 17:19:00
nvd
nvd
CVE-2007-2485
2007-05-03 17:19:00
wpvulndb
wpvulndb
Myflash <= 1.00 - (wppath) RFI
2014-08-01 00:00:00
patchstack
patchstack
WordPress Myflash Plugin <= 1.00 - Remote File Inclusion
2007-05-03 00:00:00
prion
prion
Remote file inclusion
2007-05-03 17:19:00
cvelist
cvelist
CVE-2007-2485
2007-05-03 17:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.089 Low
EPSS
Percentile
94.6%
Related for CVE-2007-2485