Lucene search

[email protected]CVE-2007-6178

HistoryNov 30, 2007 - 12:46 a.m.

CVE-2007-6178

2007-11-3000:46:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2007-6178

php

remote file inclusion

easy hosting control panel

ehcp

ubuntu

vulnerability

nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.8%

JSON

Multiple PHP remote file inclusion vulnerabilities in Easy Hosting Control Panel for Ubuntu (EHCP) 0.22.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the confdir parameter to (1) dbutil.bck.php and (2) dbutil.php in config/.

CPENameOperatorVersion
easy_hosting_control_panel:easy_hosting_control_paneleasy hosting control paneleq0.22.8

CPE	Name	Operator	Version
easy_hosting_control_panel:easy_hosting_control_panel	easy hosting control panel	eq	0.22.8

References

www.securityfocus.com/bid/26623

exchange.xforce.ibmcloud.com/vulnerabilities/38698

www.exploit-db.com/exploits/4671

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.8%

JSON

Related for CVE-2007-6178

prion1