Vulnerability Details CVE-2007-5309
PHP remote file inclusion vulnerability in admin.wmtgallery.php in the webmaster-tips.net Flash Image Gallery (com_wmtgallery) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.08
EPSS Ranking 91.6%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/38645
- http://www.attrition.org/pipermail/vim/2007-October/001823.html
- http://www.attrition.org/pipermail/vim/2007-October/001824.html
- http://www.securityfocus.com/bid/25958
- http://www.vupen.com/english/advisories/2007/3434
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37016
- https://www.exploit-db.com/exploits/4496
- http://osvdb.org/38645
- http://www.attrition.org/pipermail/vim/2007-October/001823.html
- http://www.attrition.org/pipermail/vim/2007-October/001824.html
- http://www.securityfocus.com/bid/25958
- http://www.vupen.com/english/advisories/2007/3434
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37016
- https://www.exploit-db.com/exploits/4496
Products affected by CVE-2007-5309
-
cpe:2.3:a:joomla:joomla:*
-
cpe:2.3:a:webmaster-tips.net:flash_image_gallery:1.0