Lucene search

K
cve[email protected]CVE-2007-4951
HistorySep 18, 2007 - 8:17 p.m.

CVE-2007-4951

2007-09-1820:17:00
CWE-94
web.nvd.nist.gov
18
cve-2007-4951
php
remote file inclusion
yapig 0.95b
security vulnerability

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.4%

PHP remote file inclusion vulnerability in sample.php in YaPiG 0.95b allows remote attackers to execute arbitrary PHP code via a URL in the YAPIG_PATH parameter. NOTE: this issue has been disputed by CVE, since YAPIG_PATH is defined before use

Affected configurations

NVD
Node
yapigyapigMatch0.95b
CPENameOperatorVersion
yapig:yapigyapigeq0.95b

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.4%

Related for CVE-2007-4951