Remote file inclusion

2007-10-0617:17:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.6%

JSON

PHP remote file inclusion vulnerability in log.php in phpFreeLog alpha 0.2.0 allows remote attackers to include and execute arbitrary files via unspecified vectors. NOTE: the original disclosure is likely erroneous.

CPENameOperatorVersion
phpfreelogeq0.2.0-alpha

CPE	Name	Operator	Version
	phpfreelog	eq	0.2.0-alpha

References

osvdb.org/45519

www.attrition.org/pipermail/vim/2007-October/001820.html

www.secumania.org/exploits/web-applications/phpfreelog-alpha-v0_2_0--%3C%3D--remote-file-inclusion-vulnerability-2007092832175/

www.securityfocus.com/bid/25873