CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-1416

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1500%
EPSS Percentile18.69th
Published2007年3月12日
Last Modified2026年4月23日

Vulnerability Description

PHP remote file inclusion vulnerability in createurl.php in JCcorp (aka James Coyle) URLshrink allows remote attackers to execute arbitrary PHP code via a URL in the formurl parameter.

Affected Platforms (CPE)

📦
Jccorp

Urlshrink

= 1.3.1

References & Advisories

🔗 http://osvdb.org/33982
🔗 http://secunia.com/advisories/24340
🔗 http://securityreason.com/securityalert/2415
🔗 http://www.securityfocus.com/archive/1/462310/100/0/threaded
🔗 http://www.securityfocus.com/archive/1/463523/100/0/threaded
🔗 http://www.securityfocus.com/bid/22894
🔗 http://www.vupen.com/english/advisories/2007/0902
🔗 http://osvdb.org/33982

相關漏洞威脅

CVE-2007-179510.0

JCcorp URLshrink 1.3.1 allows remote attackers to execute arbitrary PHP code via the email address field in an HTML link. NOTE: t...

CVE-2007-179610.0

Multiple unspecified vulnerabilities in JCcorp URLshrink before 1.3.2 have unspecified attack vectors and impact.

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...