CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Guestbara: >> Guestbara >> 1.2 Security Vulnerabilities

CVE-2007-1554

Direct static code injection vulnerability in admin/configuration.php in Guestbara 1.2 and earlier allows remote authenticated users to inject arbitrary PHP code into config.php via the (1) admin_mail, (2) emotpatch, (3) login, (4) pass, and unspecified other parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS Score

6.8

EPSS Score

0.005

Published

2007-03-20

Page 1

Vulnerabilities

Vulnerable Software

Guestbara: >> Guestbara >> 1.2 Security Vulnerabilities

Products

Pricing

Contact Us