exploitDog

CVE-2007-4951

Опубликовано: 18 сент. 2007

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

PHP remote file inclusion vulnerability in sample.php in YaPiG 0.95b allows remote attackers to execute arbitrary PHP code via a URL in the YAPIG_PATH parameter. NOTE: this issue has been disputed by CVE, since YAPIG_PATH is defined before use

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yapig:yapig:0.95b:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00661

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-rjqh-pc3v-h9pm

github

почти 4 года назад

** DISPUTED ** PHP remote file inclusion vulnerability in sample.php in YaPiG 0.95b allows remote attackers to execute arbitrary PHP code via a URL in the YAPIG_PATH parameter. NOTE: this issue has been disputed by CVE, since YAPIG_PATH is defined before use.

EPSS

Процентиль: 71%

0.00661

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-94