QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-3217

Back to search

CVE-2007-3217

Published: Jun 14, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple PHP remote file inclusion vulnerabilities in Prototype of an PHP application 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the path_inc parameter to (1) index.php in gestion/; (2) identification.php, (3) disconnect.php, (4) loginliste.php, (5) loginmodif.php, (6) index.php, and (7) ident.inc.php in ident/; (8) menuadministration.php and (9) menuprincipal.php in menu/; (10) param.inc.php in param/; (11) index.php in plugins/phpgacl/; and (12) index.php and (13) common.inc.php.

VendorProductVersions

n/a

n/a

affected
n/a

References

37158
vdb-entry
x_refsource_OSVDB
2812
third-party-advisory
x_refsource_SREASON
37155
vdb-entry
x_refsource_OSVDB
37161
vdb-entry
x_refsource_OSVDB
24266
vdb-entry
x_refsource_BID
37160
vdb-entry
x_refsource_OSVDB
37153
vdb-entry
x_refsource_OSVDB
37151
vdb-entry
x_refsource_OSVDB
37159
vdb-entry
x_refsource_OSVDB
37156
vdb-entry
x_refsource_OSVDB
37157
vdb-entry
x_refsource_OSVDB
37152
vdb-entry
x_refsource_OSVDB
37150
vdb-entry
x_refsource_OSVDB
37154
vdb-entry
x_refsource_OSVDB
37149
vdb-entry
x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now