CVE-2007-3460

2007-06-2718:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

Low

0.1 Low

EPSS

Percentile

94.9%

JSON

Multiple PHP remote file inclusion vulnerabilities in index.php3 in EVA-Web 1.1 through 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) aide or (2) perso parameter.

References

osvdb.org/36327

secunia.com/advisories/25845

spip-edu.edres74.net/article.php3?id_article=210

www.securityfocus.com/bid/24664

exchange.xforce.ibmcloud.com/vulnerabilities/35091

www.exploit-db.com/exploits/4112