1. Home
  2. CVE Database
  3. CVE-2007-2092
HIGH · 7.5

CVE-2007-2092

Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) allows remote attackers to inject arbitrary PHP code into posts.txt via the name parameter. NOTE: t...

Vulnerability Description

Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) allows remote attackers to inject arbitrary PHP code into posts.txt via the name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
LimesoftLimesoft Guestbook1.0

References

FAQ

What is CVE-2007-2092?

CVE-2007-2092 is a vulnerability with a CVSS score of 7.5 (HIGH). Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) allows remote attackers to inject arbitrary PHP code into posts.txt via the name parameter. NOTE: t...

How severe is CVE-2007-2092?

CVE-2007-2092 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-2092?

Check the references section above for vendor advisories and patch information. Affected products include: Limesoft Limesoft Guestbook.