Lucene search

PRIOn knowledge basePRION:CVE-2007-2762

HistoryMay 18, 2007 - 10:30 p.m.

Remote file inclusion

2007-05-1822:30:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.184 Low

EPSS

Percentile

96.1%

JSON

Multiple PHP remote file inclusion vulnerabilities in Build it Fast (bif3) 0.4.1 allow remote attackers to execute arbitrary PHP code via a URL in (1) the pear_dir parameter to Base/Application.php, or the (2) sys_dir parameter to (a) Footer.php, (b) widget.BifContainer.php, © widget.BifRoot.php, (d) widget.BifRoot2.php, (e) widget.BifRoot3.php, or (f) widget.BifWarning.php in Widgets/Base/.

CPENameOperatorVersion
build_it_fasteq0.4.1

CPE	Name	Operator	Version
	build_it_fast	eq	0.4.1

References

osvdb.org/37949

osvdb.org/37950

osvdb.org/37951

osvdb.org/37952

osvdb.org/37953

osvdb.org/37954

osvdb.org/37955

www.securityfocus.com/bid/24045

exchange.xforce.ibmcloud.com/vulnerabilities/34362

www.exploit-db.com/exploits/3947

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.184 Low

EPSS

Percentile

96.1%

JSON

Related for PRION:CVE-2007-2762

cve1