Lucene search
HistoryOct 23, 2007 - 4:46 p.m.
CVE-2007-5628
cve
2007
5628
php
remote file inclusion
vulnerability
towels
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.3%
PHP remote file inclusion vulnerability in src/scripture.php in The Online Web Library Site (TOWels) 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the pageHeaderFile parameter.
Affected configurations
Node
towelstowelsMatch0.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| towels:towels | towels | eq | 0.1 |
Related
prion
prion
Remote file inclusion
2007-10-23 16:46:00
nvd
nvd
CVE-2007-5628
2007-10-23 16:46:00
canvas
canvas
Immunity Canvas: TOWEL_INCLUDE
2007-10-23 16:46:00
cvelist
cvelist
CVE-2007-5628
2007-10-23 16:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.3%
Related for CVE-2007-5628