CVE-2007-0808 - OpenCVE

PHP remote file inclusion vulnerability in Mina Ajans Script allows remote attackers to execute arbitrary PHP code via a URL in the syf parameter to an unspecified PHP script.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mina Ajans	Mina Ajans Script

Configuration 1 [-]

cpe:2.3:a:mina_ajans:mina_ajans_script:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/33687
http://www.securityfocus.com/archive/1/459191/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/32243

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-02-07T11:00:00

Updated: 2024-08-07T12:34:21.100Z

Reserved: 2007-02-07T00:00:00

Link: CVE-2007-0808

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-02-07T11:28:00.000

Modified: 2018-10-16T16:34:51.420

Link: CVE-2007-0808

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-02-05T00:00:00", "descriptions": [{"lang": "en", "value": "PHP remote file inclusion vulnerability in Mina Ajans Script allows remote attackers to execute arbitrary PHP code via a URL in the syf parameter to an unspecified PHP script."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "33687", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/33687"}, {"name": "20070205 Mina Ajans Script Remote File Inclusion Vuln.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/459191/100/0/threaded"}, {"name": "mina-multiple-file-include(32243)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32243"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0808", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PHP remote file inclusion vulnerability in Mina Ajans Script allows remote attackers to execute arbitrary PHP code via a URL in the syf parameter to an unspecified PHP script."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "33687", "refsource": "OSVDB", "url": "http://osvdb.org/33687"}, {"name": "20070205 Mina Ajans Script Remote File Inclusion Vuln.", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/459191/100/0/threaded"}, {"name": "mina-multiple-file-include(32243)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32243"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:34:21.100Z"}, "title": "CVE Program Container", "references": [{"name": "33687", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/33687"}, {"name": "20070205 Mina Ajans Script Remote File Inclusion Vuln.", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/459191/100/0/threaded"}, {"name": "mina-multiple-file-include(32243)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32243"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0808", "datePublished": "2007-02-07T11:00:00", "dateReserved": "2007-02-07T00:00:00", "dateUpdated": "2024-08-07T12:34:21.100Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}