QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-5600

Back to search

CVE-2007-5600

Published: Oct 19, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Incomplete blacklist vulnerability in index.php in Artmedic CMS 3.4 and earlier allows remote attackers to execute arbitrary PHP code via a (1) UNC share pathname, or a (2) ftps, (3) ssh2.sftp, or (4) ssh2.scp URL, in the page parameter, for which PHP remote file inclusion is blocked only for http, https, and ftp URLs.

VendorProductVersions

n/a

n/a

affected
n/a

References

4538
exploit
x_refsource_EXPLOIT-DB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now