Lucene search

[email protected]CVE-2007-3697

HistoryJul 11, 2007 - 10:30 p.m.

CVE-2007-3697

2007-07-1122:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-3697

php

remote file inclusion

flashbb

security vulnerability

nvd

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.144 Low

EPSS

Percentile

95.7%

JSON

PHP remote file inclusion vulnerability in phpbb/sendmsg.php in FlashBB 1.1.8 and earlier allows remote attackers to execute arbitrary code via a URL in the phpbb_root_path parameter.

CPENameOperatorVersion
tufat:flashbbtufat flashbble1.1.5

CPE	Name	Operator	Version
tufat:flashbb	tufat flashbb	le	1.1.5

References

osvdb.org/36139

secunia.com/advisories/26007

securityreason.com/securityalert/2881

www.securityfocus.com/archive/1/473281/100/0/threaded

www.securityfocus.com/bid/24842

www.vupen.com/english/advisories/2007/2514

exchange.xforce.ibmcloud.com/vulnerabilities/35316

www.exploit-db.com/exploits/4169

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.144 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2007-3697

prion1