7.5
CVE-2007-3066
- EPSS 1.8%
- Veröffentlicht 06.06.2007 01:30:00
- Zuletzt bearbeitet 16.06.2026 22:41:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple PHP remote file inclusion vulnerabilities in php(Reactor) 1.2.7 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pathtohomedir parameter to (1) view.inc.php, (2) users.inc.php, (3) updatecms.inc.php, and (4) polls.inc.php in inc/; and other unspecified files, different vectors than CVE-2006-3983.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpreactor ≫ Phpreactor Version <= 1.2.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.8% | 0.757 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/38375
http://osvdb.org/38376
http://osvdb.org/38377
http://osvdb.org/38378
http://securityreason.com/securityalert/2773
http://www.securityfocus.com/archive/1/470241/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/34674