CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-5390

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.1000%
EPSS Percentile31.38th
Published2007年10月12日
Last Modified2026年4月23日

Vulnerability Description

PHP remote file inclusion vulnerability in index.php in PicoFlat CMS 0.4.14 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pagina parameter.

Affected Platforms (CPE)

📦
Picoflat Cms

Picoflat Cms

<= 0.4.14

References & Advisories

🔗 http://osvdb.org/37686
🔗 http://secunia.com/advisories/27208
🔗 http://www.securityfocus.com/bid/26043
🔗 https://www.exploit-db.com/exploits/4520
🔗 http://osvdb.org/37686
🔗 http://secunia.com/advisories/27208
🔗 http://www.securityfocus.com/bid/26043
🔗 https://www.exploit-db.com/exploits/4520

相关漏洞威胁

CVE-2008-660410.0

Directory traversal vulnerability in index.php in PicoFlat CMS 0.5.9 allows remote attackers to include and execute arbitrary loca...

CVE-2007-59206.8

index.php in Domenico Mancini PicoFlat CMS before 0.4.18 allows remote attackers to include certain files via unspecified vectors,...

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...