NVD

Id
53218  
Name
CVE-2007-1010  
Description
Multiple PHP remote file inclusion vulnerabilities in ZebraFeeds 1.0, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the zf_path parameter to (1) aggregator.php and (2) controller.php in newsfeeds/includes/.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2007-02-21  
Modified Date
2011-03-07  
Seq
2007-1010  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
269453 53218 CVE-2007-1010 http://cazalet.org/category/zebrafeeds  View
269454 53218 CVE-2007-1010 http://cazalet.org/zebrafeeds/forums/viewtopic.php?pid=358  View
269455 53218 CVE-2007-1010 3314  View
269456 53218 CVE-2007-1010 22576  View
269457 53218 CVE-2007-1010 ADV-2007-0622  View
269458 53218 CVE-2007-1010 zebrafeeds-zfpath-file-include(32507)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
56415 JVNDB-2007-005107 ZebraFeeds における PHP リモートファイルインクルージョンの脆弱性 ZebraFeeds には、register_globals が有効になっている際、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2007-1010 24365 CVE-2007-1010 53218 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005107.html 2007-02-21 2012-12-20 View