CVE-2007-2001 in Crea-Bookinformação

Sumário

de MITRE

Multiple direct static code injection vulnerabilities in admin/configurer2.php in Crea-Book 1.0 and earlier allow remote authenticated administrators to execute arbitrary PHP code via the "Fond de la page" (background color) field and other unspecified fields, which injects into config.inc.php3.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

12/04/2007

Divulgação

12/04/2007

Moderação

aceite

Entrada

VDB-36143

CPE

pronto

CWE

CWE-94 (não confirmado)

Exploração

Descarregar

CVSS

6.5 (NVD)

EPSS

0.05378

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2001
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2001
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2001/

◂ Voltar Visão Geral Próximo ▸

Do you know our Splunk app?

Download it now for free!