CVE-2007-0497

2007-01-25T21:28:00
ID CVE-2007-0497
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:33:00

Description

PHP remote file inclusion vulnerability in upload/top.php in Upload-Service 1.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the maindir parameter.