CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1108

PHP remote file inclusion vulnerability in index.php in Christian Schneider CS-Gallery 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the album parameter during a securealbum todo action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.176

EPSS Ranking 94.9%

CVSS Severity

CVSS v2 Score 6.8

References

http://osvdb.org/33754
http://secunia.com/advisories/24291
http://www.securityfocus.com/bid/22712
http://www.vupen.com/english/advisories/2007/0734
https://exchange.xforce.ibmcloud.com/vulnerabilities/32674
https://www.exploit-db.com/exploits/3372
http://osvdb.org/33754
http://secunia.com/advisories/24291
http://www.securityfocus.com/bid/22712
http://www.vupen.com/english/advisories/2007/0734
https://exchange.xforce.ibmcloud.com/vulnerabilities/32674
https://www.exploit-db.com/exploits/3372

Products affected by CVE-2007-1108

Cs-Gallery » Cs-Gallery » Version: Any

cpe:2.3:a:cs-gallery:cs-gallery:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1108

Products

Pricing

Contact Us