Lucene search

[email protected]NVD:CVE-2007-0787

HistoryFeb 06, 2007 - 7:28 p.m.

CVE-2007-0787

2007-02-0619:28:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.024

Percentile

89.9%

JSON

PHP remote file inclusion vulnerability in controller.php in Simple Invoices before 20070202 allows remote attackers to execute arbitrary PHP code via a URL in the (1) module or (2) view parameter. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

simple_invoicessimple_invoicesMatch2007-02-02

VendorProductVersionCPE
simple_invoicessimple_invoices2007-02-02cpe:2.3:a:simple_invoices:simple_invoices:2007-02-02:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
simple_invoices	simple_invoices	2007-02-02	cpe:2.3:a:simple_invoices:simple_invoices:2007-02-02:::::::*

References

osvdb.org/31796

secunia.com/advisories/24040

www.securityfocus.com/bid/22389

www.simpleinvoices.org/index.php?news=25

www.vupen.com/english/advisories/2007/0481

exchange.xforce.ibmcloud.com/vulnerabilities/32207

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.024

Percentile

89.9%

JSON

Related for NVD:CVE-2007-0787

prion1 cve1 cvelist1 securityvulns1