Lucene search
K

4 matches found

canvas
canvas
added 2007/06/14 11:30 p.m.31 views

Immunity Canvas: XOOPS_CJCONTENT

Name| xoopscjcontent ---|--- CVE| CVE-2007-3220 Exploit Pack| CANVAS Description| Xoops Cjaycontent Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Xoops CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3220 CVE Name: CVE-2007-3220...

6.8CVSS1AI score0.62746EPSS
Exploits1
NVD
NVD
added 2007/06/14 11:30 p.m.31 views

CVE-2007-3220

PHP remote file inclusion vulnerability in admin/editor2/spawcontrol.class.php in the Cjay Content 3 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spawroot parameter. NOTE: this may be a duplicate of CVE-2006-4656...

6.8CVSS7.2AI score0.62746EPSS
Exploits1References5
Cvelist
Cvelist
added 2007/06/14 11:0 p.m.27 views

CVE-2007-3220

PHP remote file inclusion vulnerability in admin/editor2/spawcontrol.class.php in the Cjay Content 3 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spawroot parameter. NOTE: this may be a duplicate of CVE-2006-4656...

7.2AI score0.62746EPSS
Exploits1References5
CVE
CVE
added 2007/06/14 11:0 p.m.67 views

CVE-2007-3220

CVE-2007-3220 affects the Cjay Content 3 module for XOOPS, specifically admin/editor2/spaw_control.class.php, where the spaw_root parameter enables PHP remote file inclusion. The underlying issue is improper handling/validation of spaw_root, allowing an attacker to cause arbitrary PHP code execut...

6.8CVSS7.5AI score0.62746EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder