Multiple PHP remote file inclusion vulnerabilities in PMECMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config[pathMod] parameter to index.php in (1) mod/image/, (2) mod/liens/, (3) mod/liste/, (4) mod/special/, or (5) mod/texte/.
References
Configurations
History
21 Nov 2024, 00:31
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/35777 - | |
References | () http://osvdb.org/35778 - | |
References | () http://osvdb.org/35779 - | |
References | () http://osvdb.org/35780 - | |
References | () http://osvdb.org/35781 - | |
References | () http://secunia.com/advisories/25177 - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/23829 - Exploit | |
References | () http://www.vupen.com/english/advisories/2007/1670 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/34104 - | |
References | () https://www.exploit-db.com/exploits/3852 - |
Information
Published : 2007-05-09 01:19
Updated : 2024-11-21 00:31
NVD link : CVE-2007-2540
Mitre link : CVE-2007-2540
CVE.ORG link : CVE-2007-2540
JSON object : View
Products Affected
pmecms
- pmecms
CWE