CVE-2007-4818

Multiple PHP remote file inclusion vulnerabilities in Txx CMS 0.2 allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) addons/plugin.php, (2) addons/sidebar.php, (3) mail/index.php, or (4) mail/mailbox.php in modules/.
Configurations

Configuration 1 (hide)

cpe:2.3:a:txx_cms:txx_cms:0.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-09-11 19:17

Updated : 2024-02-04 17:13


NVD link : CVE-2007-4818

Mitre link : CVE-2007-4818

CVE.ORG link : CVE-2007-4818


JSON object : View

Products Affected

txx_cms

  • txx_cms
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')