Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2007-3007

PHP 5 before 5.2.3 does not enforce the open_basedir or safe_mode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 79.1%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2007-3007
  • Php » Php » Version: 5.0.0
    cpe:2.3:a:php:php:5.0.0
  • Php » Php » Version: 5.0.1
    cpe:2.3:a:php:php:5.0.1
  • Php » Php » Version: 5.0.2
    cpe:2.3:a:php:php:5.0.2
  • Php » Php » Version: 5.0.3
    cpe:2.3:a:php:php:5.0.3
  • Php » Php » Version: 5.0.4
    cpe:2.3:a:php:php:5.0.4
  • Php » Php » Version: 5.0.5
    cpe:2.3:a:php:php:5.0.5
  • Php » Php » Version: 5.1
    cpe:2.3:a:php:php:5.1
  • Php » Php » Version: 5.1.0
    cpe:2.3:a:php:php:5.1.0
  • Php » Php » Version: 5.1.1
    cpe:2.3:a:php:php:5.1.1
  • Php » Php » Version: 5.1.2
    cpe:2.3:a:php:php:5.1.2
  • Php » Php » Version: 5.1.3
    cpe:2.3:a:php:php:5.1.3
  • Php » Php » Version: 5.1.4
    cpe:2.3:a:php:php:5.1.4
  • Php » Php » Version: 5.1.5
    cpe:2.3:a:php:php:5.1.5
  • Php » Php » Version: 5.1.6
    cpe:2.3:a:php:php:5.1.6
  • Php » Php » Version: 5.2.0
    cpe:2.3:a:php:php:5.2.0
  • Php » Php » Version: 5.2.1
    cpe:2.3:a:php:php:5.2.1
  • Php » Php » Version: 5.2.2
    cpe:2.3:a:php:php:5.2.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved