Description
PHP remote file inclusion vulnerability in log.php in phpFreeLog alpha 0.2.0 allows remote attackers to include and execute arbitrary files via unspecified vectors. NOTE: the original disclosure is likely erroneous.
References (4)
Core 4
Core References
Third Party Advisory mailing-list
x_refsource_vim
http://www.attrition.org/pipermail/vim/2007-October/001820.html
URL Repurposed x_refsource_misc
http://www.secumania.org/exploits/web-applications/phpfreelog-alpha-v0_2_0--%3C%3D--remote-file-inclusion-vulnerability-2007092832175/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/25873
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/45519
Scores
EPSS
0.0136
EPSS Percentile
68.6%
Details
CWE
CWE-20
Status
published
Products (1)
phpfreelog/phpfreelog
0.2.0_alpha
Published
Oct 06, 2007
Tracked Since
Feb 18, 2026