CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-2189

PHP remote file inclusion vulnerability in admin/admin_album_otf.php in the MX Smartor Full Album Pack (FAP) 2.0 RC1 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.034

EPSS Ranking 86.9%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/23561
https://exchange.xforce.ibmcloud.com/vulnerabilities/33760
https://www.exploit-db.com/exploits/3766
http://www.securityfocus.com/bid/23561
https://exchange.xforce.ibmcloud.com/vulnerabilities/33760
https://www.exploit-db.com/exploits/3766

Products affected by CVE-2007-2189

Mx Smartor » Full Album Pack » Version: 2.1_rc1

cpe:2.3:a:mx_smartor:full_album_pack:2.1_rc1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2189

Products

Pricing

Contact Us