Lucene search
HistoryAug 31, 2007 - 12:17 a.m.
CVE-2007-4605
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.074
Percentile
94.1%
PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1503, CVE-2006-1636, and CVE-2006-1747.
Affected configurations
Node
vwarvirtual_warRange≤1.5.0_r15
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vwar | virtual_war | * | cpe:2.3:a:vwar:virtual_war:*:*:*:*:*:*:*:* |
Related
prion
prion
Remote file inclusion
2007-08-31 00:17:00
Remote file inclusion
2006-04-12 22:02:00
Remote file inclusion
2006-03-30 01:06:00
cvelist
cvelist
cve
cve
nvd
nvd
checkpoint_advisories
checkpoint_advisories
Web Servers VWar Remote File Inclusion (CVE-2006-1503)
2014-07-16 00:00:00
Update Protection against VWar Remote File Inclusion Vulnerability
2006-07-05 00:00:00
exploitdb
exploitdb
VWar 1.5.0 R15 - 'mvcw.php' Remote File Inclusion
2007-08-28 00:00:00
VWar 1.5 - 'war.php?vwar_root' Remote File Inclusion
2006-08-07 00:00:00
VWar 1.5 - 'member.php?vwar_root' Remote File Inclusion
2006-08-07 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.074
Percentile
94.1%
Related for NVD:CVE-2007-4605