NVD

Id
56453  
Name
CVE-2007-4328  
Description
Multiple PHP remote file inclusion vulnerabilities in Mapos Bilder Galerie 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the config[root_ordner] parameter to (1) index.php, (2) galerie.php, or (3) anzagien.php. NOTE: A later report states that 1.1 is also affected, but that the filename for vector 3 is anzeigen.php.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2007-08-13  
Modified Date
2011-09-08  
Seq
2007-4328  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
287560 56453 CVE-2007-4328 2999  View
287561 56453 CVE-2007-4328 20070809 Mapos Bilder Galerie Version 1.0 Remote Command Execution Vulnerability  View
287562 56453 CVE-2007-4328 25256  View
287563 56453 CVE-2007-4328 ADV-2007-2838  View
287564 56453 CVE-2007-4328 bildergalerie-multiple-file-include(35923)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
55578 JVNDB-2007-004270 Mapos Bilder Galerie における PHP リモートファイルインクルージョンの脆弱性 Mapos Bilder Galerie には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2007-4328 27683 CVE-2007-4328 56453 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004270.html 2007-08-13 2012-09-25 View