CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3222

PHP remote file inclusion vulnerability in modify.php in the XFsection 1.07 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the dir_module parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.041

EPSS Ranking 88.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/24465
https://exchange.xforce.ibmcloud.com/vulnerabilities/34853
https://www.exploit-db.com/exploits/4068
http://www.securityfocus.com/bid/24465
https://exchange.xforce.ibmcloud.com/vulnerabilities/34853
https://www.exploit-db.com/exploits/4068

Products affected by CVE-2007-3222

Xoops » Xfsection Module » Version: 1.07

cpe:2.3:a:xoops:xfsection_module:1.07

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3222

Products

Pricing

Contact Us