CVE-2007-1514
published 2007-03-20CVE-2007-1514: PHP remote file inclusion vulnerability in index.php in ViperWeb Portal alpha 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the…
PriorityP341medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
2.42%
82.1th percentile
PHP remote file inclusion vulnerability in index.php in ViperWeb Portal alpha 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the modpath parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| viperweb | portal | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat4.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7q6r-2xpg-8qph: PHP remote file inclusion vulnerability in index
ghsa_unreviewed·2022-05-01
CVE-2007-1514 [MEDIUM] GHSA-7q6r-2xpg-8qph: PHP remote file inclusion vulnerability in index
PHP remote file inclusion vulnerability in index.php in ViperWeb Portal alpha 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the modpath parameter.
Red Hat
kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race
vendor_redhat·2008-04-02·CVSS 4.9
CVE-2008-2365 [MEDIUM] kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race
kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race
Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25, as used in Red Hat Enterprise Linux (RHEL) 4, allows local users to cause a denial of service (oops) via a long series of PTRACE_ATTACH ptrace calls to another user's process that trigger a conflict between utrace_detach and report_quiescent, related to "late ptrace_may_attach() check" and "race around &dead_engine_ops setting," a different vulnerability than CVE-2007-0771 and CVE-2008-1514. NOTE: this issue might only affect kernel versions before 2.6.16.x.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/34310http://securityreason.com/securityalert/2449http://www.securityfocus.com/archive/1/462930/100/0/threadedhttp://www.securityfocus.com/bid/22979https://exchange.xforce.ibmcloud.com/vulnerabilities/33034http://osvdb.org/34310http://securityreason.com/securityalert/2449http://www.securityfocus.com/archive/1/462930/100/0/threadedhttp://www.securityfocus.com/bid/22979https://exchange.xforce.ibmcloud.com/vulnerabilities/33034
2007-03-20
Published