CVE

Id
26710  
CVE No.
CVE-2007-3353  
Status
Candidate  
Description
** DISPUTED ** PHP remote file inclusion vulnerability in includes/template.php in MyEvent 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the myevent_path parameter. NOTE: a reliable third party disputes this issue, saying "the entire file is a class."  
Phase
Assigned (20070622)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
271461 26710 CVE-2007-3353 BUGTRAQ:20070602 MyEvent1.6 (template.php) Remote File Inclusion Vulnerability  View
271462 26710 CVE-2007-3353 URL:http://marc.info/?l=bugtraq&m=118080045229127&w=2  View
271463 26710 CVE-2007-3353 BUGTRAQ:20070602 Re:MyEvent1.6 (template.php) Remote File Inclusion Vulnerability  View
271464 26710 CVE-2007-3353 URL:http://www.securityfocus.com/archive/1/archive/1/470348/100/200/threaded  View
271465 26710 CVE-2007-3353 OSVDB:36230  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
57044 JVNDB-2007-005736 NetClassifieds Premium Edition におけるクロスサイトスクリプティングの脆弱性 NetClassifieds Premium Edition には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-3355 26710 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005736.html  View