exploitDog

CVE-2007-1935

Опубликовано: 10 апр. 2007

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

PHP file inclusion vulnerability in admin/index.php in ScarAdControl (ScarAdController) 1.1 allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the site parameter, which is accessed by the file_exists function.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scar4u.de:scaradcontroller:1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00846

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-f4jv-4r6j-8383

github

почти 4 года назад

PHP file inclusion vulnerability in admin/index.php in ScarAdControl (ScarAdController) 1.1 allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the site parameter, which is accessed by the file_exists function.

EPSS

Процентиль: 74%

0.00846

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other