CVE-2007-5221

2007-10-0500:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.087 Low

EPSS

Percentile

94.6%

JSON

PHP remote file inclusion vulnerability in mail/childwindow.inc.php in Poppawid 2.7 allows remote attackers to execute arbitrary PHP code via a URL in the form parameter.

References

osvdb.org/37422

secunia.com/advisories/27050

www.securityfocus.com/bid/25897

www.vupen.com/english/advisories/2007/3343

exchange.xforce.ibmcloud.com/vulnerabilities/36922

www.exploit-db.com/exploits/4481