Vulnerability Details CVE-2007-5230
admin/upload_files.php in Zomplog 3.8.1 and earlier does not check for administrative credentials, which allows remote attackers to perform administrative actions via a direct request. NOTE: this can be leveraged for code execution by exploiting CVE-2007-5231.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.052
EPSS Ranking 89.5%
CVSS Severity
CVSS v2 Score 7.5
References