CVE

Id
24410  
CVE No.
CVE-2007-1053  
Status
Candidate  
Description
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in phpXmms 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the tcmdp parameter to (1) phpxmmsb.php or (2) phpxmmst.php. NOTE: this issue has been disputed by a reliable third party, stating that the tcmdp variable is initialized by config.php.  
Phase
Assigned (20070221)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
240356 24410 CVE-2007-1053 BUGTRAQ:20070220 phpXmms 1.0 (tcmdp) Remote File Include Vulnerabilities  View
240357 24410 CVE-2007-1053 URL:http://www.securityfocus.com/archive/1/archive/1/460618/100/0/threaded  View
240358 24410 CVE-2007-1053 VIM:20070220 false: phpXmms 1.0 (tcmdp) Remote File Include Vulnerabilities  View
240359 24410 CVE-2007-1053 URL:http://attrition.org/pipermail/vim/2007-February/001365.html  View
240360 24410 CVE-2007-1053 OSVDB:33749  View
240361 24410 CVE-2007-1053 URL:http://osvdb.org/33749  View
240362 24410 CVE-2007-1053 SREASON:2273  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
54715 JVNDB-2007-003407 MediaWiki の AJAX 機能におけるクロスサイトスクリプティングの脆弱性 MediaWiki の index.php の AJAX 機能には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-1055 24410 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003407.html  View