Lucene search

[email protected]CVE-2007-4341

HistoryAug 14, 2007 - 6:17 p.m.

CVE-2007-4341

2007-08-1418:17:00

[email protected]

web.nvd.nist.gov

cve-2007-4341

php

remote file inclusion

vulnerability

omnistar lib2

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

PHP remote file inclusion vulnerability in adm/my_statistics.php in Omnistar Lib2 PHP 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.

Affected configurations

NVD

Node

omnistarlib2_php_libraryMatch0.2

CPENameOperatorVersion
omnistar:lib2_php_libraryomnistar lib2 php libraryeq0.2

CPE	Name	Operator	Version
omnistar:lib2_php_library	omnistar lib2 php library	eq	0.2

References

osvdb.org/38716

securityreason.com/securityalert/3006

www.securityfocus.com/archive/1/476271/100/0/threaded

www.securityfocus.com/bid/25274

exchange.xforce.ibmcloud.com/vulnerabilities/35969

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2007-4341

prion1 nvd1 cvelist1