CVE-2007-1423

2007-03-1301:00:00

mitre

www.cve.org

AI Score

7.6

Confidence

Low

EPSS

0.066

Percentile

93.8%

JSON

Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the g_include parameter to include/include_top.php and certain other PHP scripts.

References

osvdb.org/33973

secunia.com/advisories/24476

www.securityfocus.com/bid/22908

www.vupen.com/english/advisories/2007/0903

www.exploit-db.com/exploits/3448