Lucene search
MitreCVE-2007-2014HistoryApr 12, 2007 - 7:19 p.m.
CVE-2007-2014
2007-04-1219:19:00
mitre
web.nvd.nist.gov
30
cve-2007-2014
php
remote file inclusion
mynews 4.2.2
vulnerability
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.153
Percentile
96.0%
PHP remote file inclusion vulnerability in include/blocks/week_events.php in MyNews 4.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the myNewsConf[path][sys][index] parameter, a different vector than CVE-2007-0633.
Affected configurations
Node
mynewsmynewsMatch4.2.2
Related
prion
prion
Remote file inclusion
2007-04-12 19:19:00
Remote file inclusion
2007-01-31 18:28:00
cvelist
cvelist
CVE-2007-2014
2007-04-12 19:00:00
CVE-2007-0633
2007-01-31 18:00:00
nvd
nvd
CVE-2007-2014
2007-04-12 19:19:00
CVE-2007-0633
2007-01-31 18:28:00
exploitdb
exploitdb
MyNews 4.2.2 - 'Week_Events.php' Remote File Inclusion
2007-04-10 00:00:00
MyNews 4.2.2 - 'themefunc.php' Remote File Inclusion
2007-01-30 00:00:00
cve
cve
CVE-2007-0633
2007-01-31 18:28:00
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.153
Percentile
96.0%
Related for CVE-2007-2014