Lucene search

[email protected]CVE-2007-2530

HistoryMay 09, 2007 - 12:19 a.m.

CVE-2007-2530

2007-05-0900:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2530

php

remote file inclusion

tropicalm crowell resource

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.1 Low

EPSS

Percentile

94.8%

JSON

Multiple PHP remote file inclusion vulnerabilities in Tropicalm Crowell Resource 4.5.2 allow remote attackers to execute arbitrary PHP code via a URL in the RESPATH parameter to (1) dosearch.php or (2) printfriendly.php.

CPENameOperatorVersion
tropicalm:tropicalm_crowell_resourcetropicalm tropicalm crowell resourceeq4.5.2

CPE	Name	Operator	Version
tropicalm:tropicalm_crowell_resource	tropicalm tropicalm crowell resource	eq	4.5.2

References

osvdb.org/35823

osvdb.org/35824

secunia.com/advisories/25179

www.vupen.com/english/advisories/2007/1680

exchange.xforce.ibmcloud.com/vulnerabilities/34113

www.exploit-db.com/exploits/3865

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.1 Low

EPSS

Percentile

94.8%

JSON

Related for CVE-2007-2530

checkpoint_advisories1 prion1