CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-2257

PHP remote file inclusion vulnerability in subscp.php in Fully Modded phpBB2 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 84.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/35419
http://securityreason.com/securityalert/2621
http://www.securityfocus.com/archive/1/466177/100/0/threaded
http://www.securityfocus.com/bid/23565
https://exchange.xforce.ibmcloud.com/vulnerabilities/33751
http://osvdb.org/35419
http://securityreason.com/securityalert/2621
http://www.securityfocus.com/archive/1/466177/100/0/threaded
http://www.securityfocus.com/bid/23565
https://exchange.xforce.ibmcloud.com/vulnerabilities/33751

Products affected by CVE-2007-2257

Fully Modded Phpbb » Fully Modded Phpbb2 » Version: Any

cpe:2.3:a:fully_modded_phpbb:fully_modded_phpbb2:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2257

Products

Pricing

Contact Us