CVE-2007-1967
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/04/2007
Last modified:
09/04/2025
Description
PHP remote file inclusion vulnerability in index.php in stat12 allows remote attackers to execute arbitrary PHP code via a URL in the langpath parameter. NOTE: this issue was published by an unreliable researcher, and there is little information to determine which product is actually affected. This is probably an invalid report based on analysis by CVE and a third party
Impact
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:stat12:stat12:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://securityreason.com/securityalert/2555
- http://www.attrition.org/pipermail/vim/2007-April/001488.html
- http://www.attrition.org/pipermail/vim/2007-April/001508.html
- http://www.securityfocus.com/archive/1/464582/100/0/threaded
- http://securityreason.com/securityalert/2555
- http://www.attrition.org/pipermail/vim/2007-April/001488.html
- http://www.attrition.org/pipermail/vim/2007-April/001508.html
- http://www.securityfocus.com/archive/1/464582/100/0/threaded