Vulnerability Details CVE-2007-5258
PHP remote file inclusion vulnerability in log.php in phpFreeLog alpha 0.2.0 allows remote attackers to include and execute arbitrary files via unspecified vectors. NOTE: the original disclosure is likely erroneous.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/45519
- http://www.attrition.org/pipermail/vim/2007-October/001820.html
- http://www.secumania.org/exploits/web-applications/phpfreelog-alpha-v0_2_0--%3C%3D--remote-file-inclusion-vulnerability-2007092832175/
- http://www.securityfocus.com/bid/25873
- http://osvdb.org/45519
- http://www.attrition.org/pipermail/vim/2007-October/001820.html
- http://www.secumania.org/exploits/web-applications/phpfreelog-alpha-v0_2_0--%3C%3D--remote-file-inclusion-vulnerability-2007092832175/
- http://www.securityfocus.com/bid/25873
Products affected by CVE-2007-5258
-
cpe:2.3:a:phpfreelog:phpfreelog:0.2.0_alpha