Lucene search
HistoryJun 21, 2007 - 1:30 a.m.
CVE-2007-3306
cve-2007-3306
php
remote file inclusion
crontab
run_billing.php
minibill 1.2.5
nvd
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.05 Low
EPSS
Percentile
92.8%
PHP remote file inclusion vulnerability in crontab/run_billing.php in MiniBill 1.2.5 allows remote attackers to execute arbitrary PHP code via a URL in the config[include_dir] parameter, a different vector than CVE-2006-4489.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ultrize:minibill | ultrize minibill | eq | 1.2.5 |
Related
prion
prion
Remote file inclusion
2007-06-21 01:30:00
canvas
canvas
Immunity Canvas: MINIBILL_INCLUDE
2007-06-21 01:30:00
cve
cve
CVE-2006-4489
2006-08-31 22:04:00
CVE-2006-5620
2006-10-31 20:07:00
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.05 Low
EPSS
Percentile
92.8%
Related for CVE-2007-3306