Back to search
CVE-2007-2816
Published: May 22, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple PHP remote file inclusion vulnerabilities in ol'bookmarks 0.7.4 allow remote attackers to execute arbitrary PHP code via a URL in the root parameter to (1) test1.php, (2) blackorange.php, (3) default.php, (4) frames1.php, (5) frames1_top.php, (7) test2.php, (8) test3.php, (9) test4.php, (10) test5.php, (11) test6.php, (12) frames1_left.php, and (13) frames1_center.php in themes/.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
36502
vdb-entry
x_refsource_OSVDB
36503
vdb-entry
x_refsource_OSVDB
36495
vdb-entry
x_refsource_OSVDB
36499
vdb-entry
x_refsource_OSVDB
36494
vdb-entry
x_refsource_OSVDB
36498
vdb-entry
x_refsource_OSVDB
ADV-2007-1893
vdb-entry
x_refsource_VUPEN
20070522 true (with errors): ol'bookmarks RFI
mailing-list
x_refsource_VIM
3962
exploit
x_refsource_EXPLOIT-DB
25356
third-party-advisory
x_refsource_SECUNIA
36501
vdb-entry
x_refsource_OSVDB
36504
vdb-entry
x_refsource_OSVDB
36493
vdb-entry
x_refsource_OSVDB
olbookmarks-root-file-include(34402)
vdb-entry
x_refsource_XF
36497
vdb-entry
x_refsource_OSVDB
36500
vdb-entry
x_refsource_OSVDB
24083
vdb-entry
x_refsource_BID
36496
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now