CVE-2015-7381
Status: Analyzed
Last modified:
29-09-2015
Published:
28-09-2015
7.5
SUMMARY CVE-2015-7381
Multiple PHP remote file inclusion vulnerabilities in install.php in Web Reference Database (aka refbase) through 0.9.6 allow remote attackers to execute arbitrary PHP code via the (1) pathToMYSQL or (2) databaseStructureFile parameter, a different issue than CVE-2015-6008.
Access CVSS CVE-2015-7381
Attack Complexity | Attack Vector | Privileges Required | Scope | User Interaction |
---|---|---|---|---|
LOW | NETWORK | NONE | - | - |
Impact CVSS CVE-2015-7381
Confidentiality | Integrity | Availability |
---|---|---|
PARTIAL | PARTIAL | PARTIAL |
Details CVE-2015-7381
EPSS | 0.00598 |
---|---|
EPSS % | 0.78761 |
References | |
CWE | CWE-94 |
CAPEC |
|