CVE-2007-4101

Sažetak

Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php, (2) vote.php, and (3) admin.php.

Reference

http://osvdb.org/37262
http://osvdb.org/37263
http://osvdb.org/37264
http://securityreason.com/securityalert/2937
http://www.attrition.org/pipermail/vim/2007-July/001739.html
http://www.securityfocus.com/archive/1/475096/100/0/threaded
http://www.securityfocus.com/bid/25138

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

15-10-2018 - 21:33

Objavljeno

31-07-2007 - 10:17