Lucene search

K
cve[email protected]CVE-2007-4439
HistoryAug 21, 2007 - 12:17 a.m.

CVE-2007-4439

2007-08-2100:17:00
web.nvd.nist.gov
42
cve-2007-4439
php
remote file inclusion
vulnerability
squirrelcart
nvd

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.068 Low

EPSS

Percentile

93.9%

PHP remote file inclusion vulnerability in popup_window.php in Squirrelcart 1.x.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the site_isp_root parameter, probably related to cart.php.

Affected configurations

NVD
Node
lighthouse_developmentsquirrelcartRange1.6.3

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.068 Low

EPSS

Percentile

93.9%

Related for CVE-2007-4439