Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4524

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4524
Last Modified 06 Dec 2008 01:25:25
Published 24 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4524

Summary

PHP remote file inclusion vulnerability in adisplay.php in PhPress 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the lang parameter.

Vulnerable Systems

Application

  • Phpress 0.2.0


References

XF - phpress-adisplay-file-include(36219)

BID - 25415

BUGTRAQ - 20070822 phpress 0.2.0 (adisplay.php) Remote File Inclusion

MILW0RM - 4382

OSVDB - 38351

SREASON - 3055


Last Updated: 27 May 2016 10:45:53