Comdev : Security Vulnerabilities, CVEs, Published In 2007 (File inclusion)
PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter, a different vector than CVE-2006-5441.
Max CVSS
7.5
EPSS Score
1.08%
Published
2007-06-06
Updated
2018-10-16
PHP remote file inclusion vulnerability in sampleecommerce.php in Comdev eCommerce 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter.
Max CVSS
7.5
EPSS Score
1.10%
Published
2007-06-06
Updated
2018-10-16
Multiple PHP remote file inclusion vulnerabilities in Modules Builder (modbuild) 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter to (1) config-bak.php or (2) config.php. NOTE: CVE disputes this vulnerability because the unmodified scripts set the applicable variable to the empty string; reasonable modified copies would use a fixed pathname string
Max CVSS
7.5
EPSS Score
1.08%
Published
2007-05-02
Updated
2024-04-11
3 vulnerabilities found