Описание
Static code injection vulnerability in process.php in AimStats 3.2 allows remote attackers to inject PHP code into config.php via the number parameter in an update action.
Static code injection vulnerability in process.php in AimStats 3.2 allows remote attackers to inject PHP code into config.php via the number parameter in an update action.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-2167
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33742
- https://www.exploit-db.com/exploits/3762
- http://secunia.com/advisories/24955
- http://www.securityfocus.com/bid/23573
- http://www.vupen.com/english/advisories/2007/1447
- http://www.x-pose.org/aimstats.php
EPSS
Процентиль: 89%
0.04865
Низкий
CVE ID
Связанные уязвимости
nvd
почти 19 лет назад
Static code injection vulnerability in process.php in AimStats 3.2 allows remote attackers to inject PHP code into config.php via the number parameter in an update action.
EPSS
Процентиль: 89%
0.04865
Низкий