CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1695

PHP remote file inclusion vulnerability in includes/usercp_register.php in phpBB 2.0.19 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: this issue has been disputed by third-party researchers, stating that the file checks for a global constant and cannot be accessed directly

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.5%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.securityfocus.com/archive/1/463718/100/0/threaded
http://www.securityfocus.com/archive/1/463817/100/0/threaded
http://www.securityfocus.com/archive/1/463718/100/0/threaded
http://www.securityfocus.com/archive/1/463817/100/0/threaded

Products affected by CVE-2007-1695

Phpbb Group » Phpbb » Version: 2.0.19

cpe:2.3:a:phpbb_group:phpbb:2.0.19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1695

Products

Pricing

Contact Us