CVE-2007-5600 in Artmedicinformación

Resumen

por MITRE

Incomplete blacklist vulnerability in index.php in Artmedic CMS 3.4 and earlier allows remote attackers to execute arbitrary PHP code via a (1) UNC share pathname, or a (2) ftps, (3) ssh2.sftp, or (4) ssh2.scp URL, in the page parameter, for which PHP remote file inclusion is blocked only for http, https, and ftp URLs.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservar

2007-10-19

Divulgación

2007-10-19

Moderación

aceptado

Artículo

VDB-39384

CPE

listo

Explotación

Descargar

EPSS

0.01877

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!