CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4383

PHP remote file inclusion vulnerability in tracking.php in Trackeur 1 allows remote attackers to execute arbitrary PHP code via a URL in the header parameter. NOTE: CVE and a third party dispute this vulnerability because header is defined before use. The researcher is known to be unreliable

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.3%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.securityfocus.com/archive/1/476671/100/0/threaded
http://www.securityfocus.com/archive/1/476757/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/36046
http://www.securityfocus.com/archive/1/476671/100/0/threaded
http://www.securityfocus.com/archive/1/476757/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/36046

Products affected by CVE-2007-4383

Trackeur » Trackeur » Version: 1

cpe:2.3:a:trackeur:trackeur:1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4383

Products

Pricing

Contact Us