CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1935

PHP file inclusion vulnerability in admin/index.php in ScarAdControl (ScarAdController) 1.1 allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the site parameter, which is accessed by the file_exists function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.6%

CVSS Severity

CVSS v2 Score 6.8

References

http://osvdb.org/37403
https://www.exploit-db.com/exploits/3682
http://osvdb.org/37403
https://www.exploit-db.com/exploits/3682

Products affected by CVE-2007-1935

Scar4u.de » Scaradcontroller » Version: 1.1

cpe:2.3:a:scar4u.de:scaradcontroller:1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1935

Products

Pricing

Contact Us