CVE-2007-4325

2007-08-1400:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.118 Low

EPSS

Percentile

95.4%

JSON

PHP remote file inclusion vulnerability in index.php in Gaestebuch 1.5 allows remote attackers to execute arbitrary PHP code via a URL in the config[root_ordner] parameter.

References

osvdb.org/37515

secunia.com/advisories/26401

securityreason.com/securityalert/2994

www.securityfocus.com/archive/1/475950/100/0/threaded

www.securityfocus.com/bid/25252

www.vupen.com/english/advisories/2007/2837