Lucene search

[email protected]CVE-2007-5705

HistoryOct 29, 2007 - 10:46 p.m.

CVE-2007-5705

2007-10-2922:46:00

CWE-94

[email protected]

web.nvd.nist.gov

vulnerability

jeebles directory

administration system

remote

php code

cve-2007-5705

6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.5%

JSON

Unspecified vulnerability in the Settings component in the administration system in Jeebles Directory 2.9.60 allows remote authenticated administrators to execute arbitrary PHP code via unspecified vectors related to settings.inc.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

jeeblestechnologyjeebles_directoryMatch2.9.60

CPENameOperatorVersion
jeeblestechnology:jeebles_directoryjeeblestechnology jeebles directoryeq2.9.60

CPE	Name	Operator	Version
jeeblestechnology:jeebles_directory	jeeblestechnology jeebles directory	eq	2.9.60

References

secunia.com/advisories/27345

exchange.xforce.ibmcloud.com/vulnerabilities/37379

6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.5%

JSON

Related for CVE-2007-5705

nvd1 prion1 cvelist1