Lucene search
HistoryJun 21, 2007 - 6:30 p.m.
CVE-2007-3325
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.081
Percentile
94.4%
PHP remote file inclusion vulnerability in lib/language.php in LAN Management System (LMS) 1.9.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _LIB_DIR parameter, a different vector than CVE-2007-1643 and CVE-2007-2205.
Affected configurations
Node
lmslan_management_systemRange≤1.6.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lms | lan_management_system | * | cpe:2.3:a:lms:lan_management_system:*:*:*:*:*:*:*:* |
Related
prion
prion
Remote file inclusion
2007-06-21 18:30:00
Remote file inclusion
2007-04-24 20:19:00
Remote file inclusion
2007-03-24 00:19:00
cvelist
cvelist
cve
cve
nvd
nvd
CVE-2007-2205
2007-04-24 20:19:00
CVE-2007-1643
2007-03-24 00:19:00
exploitdb
exploitdb
Lms 1.5.x - 'RTMessageAdd.php' Remote File Inclusion
2007-04-23 00:00:00
LAN Management System (LMS) 1.9.6 - Remote File Inclusion
2007-06-20 00:00:00
Lms 1.8.9 - Vala Remote File Inclusion
2007-03-22 00:00:00
canvas
canvas
Immunity Canvas: LMS_INCLUDE
2007-06-21 18:30:00
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.081
Percentile
94.4%
Related for NVD:CVE-2007-3325