NVD

Id
54171  
Name
CVE-2007-2001  
Description
Multiple direct static code injection vulnerabilities in admin/configurer2.php in Crea-Book 1.0 and earlier allow remote authenticated administrators to execute arbitrary PHP code via the "Fond de la page" (background color) field and other unspecified fields, which injects into config.inc.php3.  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2007-04-12  
Modified Date
2008-09-05  
Seq
2007-2001  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
274702 54171 CVE-2007-2001 3701  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53119 JVNDB-2007-001811 Crea-Book の admin/configurer2.php における任意の PHP コードを実行される脆弱性 Crea-Book の admin/configurer2.php には、任意の PHP コードを実行される脆弱性が存在します。 CVE-2007-2001 25356 CVE-2007-2001 54171 6.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001811.html 2007-04-12 2012-06-26 View