CVE-2007-2484
35Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 45%
exploitation probability
45%top 1% of all CVEs
observed exploitation
nono source reports it
1 public exploit(s)
PHP remote file inclusion vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/3824unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://advisories.echo.or.id/adv/adv82-K-159-2007.txthttp://alexrabe.boelinger.com/http://osvdb.org/34357http://secunia.com/advisories/25063https://exchange.xforce.ibmcloud.com/vulnerabilities/33989https://www.exploit-db.com/exploits/3824http://www.securityfocus.com/archive/1/467363/100/0/threadedhttp://www.vupen.com/english/advisories/2007/1614