Lucene search

[email protected]CVE-2007-4499

HistoryAug 23, 2007 - 7:17 p.m.

CVE-2007-4499

2007-08-2319:17:00

[email protected]

web.nvd.nist.gov

cve-2007-4499

unrestricted file upload

output.php

american financing

email image upload 4.1

remote attackers

arbitrary code

security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.0%

JSON

Unrestricted file upload vulnerability in output.php in American Financing eMail Image Upload 4.1 allows remote attackers to upload and execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

american_financingemail_image_uploadMatch4.1

CPENameOperatorVersion
american_financing:email_image_uploadamerican financing email image uploadeq4.1

CPE	Name	Operator	Version
american_financing:email_image_upload	american financing email image upload	eq	4.1

References

osvdb.org/45827

www.securityfocus.com/bid/25404

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.0%

JSON

Related for CVE-2007-4499

nvd1 prion1 cvelist1