Vulnerability Details CVE-2007-1996
PHP remote file inclusion vulnerability in codebreak.php in CodeBreak, probably 1.1.2 and earlier, allows remote attackers to execute arbitrary PHP code via a URL in the process_method parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 86.2%
CVSS Severity
CVSS v2 Score 6.8
References
- http://secunia.com/advisories/24846
- http://securityreason.com/securityalert/2562
- http://www.securityfocus.com/archive/1/465382/100/0/threaded
- http://www.securityfocus.com/bid/23425
- http://www.vupen.com/english/advisories/2007/1355
- http://secunia.com/advisories/24846
- http://securityreason.com/securityalert/2562
- http://www.securityfocus.com/archive/1/465382/100/0/threaded
- http://www.securityfocus.com/bid/23425
- http://www.vupen.com/english/advisories/2007/1355