Lucene search
K

CVE-2007-2097

🗓️ 18 Apr 2007 10:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 51 Views🌐 WEB

PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0.4.7 allow remote attackers to execute arbitrary code via a URL in includes_path parameter in various files in htdocs/ and site-admin/

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Cvelist
CVE-2007-2097
18 Apr 200710:00
cvelist
NVD
CVE-2007-2097
18 Apr 200710:19
nvd
Prion
Remote file inclusion
18 Apr 200710:19
prion
Positive Technologies
PT-2007-3439 · Openconcept · Openconcept Back-End Cms
18 Apr 200700:00
ptsecurity
NVD
ParameterPositionPathDescriptionCWE
includes_pathquery paramhtdocs/click.phpRemote file inclusion via includes_path in click.php
includes_pathquery paramhtdocs/pollcollector.phpRemote file inclusion via includes_path in pollcollector.php
includes_pathquery paramhtdocs/index.phpRemote file inclusion via includes_path in index.php
includes_pathquery paramhtdocs/articlepages.phpRemote file inclusion via includes_path in articlepages.php
includes_pathquery paramhtdocs/articles.phpRemote file inclusion via includes_path in articles.php
includes_pathquery paramhtdocs/articleform.phpRemote file inclusion via includes_path in articleform.php
includes_pathquery paramhtdocs/articlesections.phpRemote file inclusion via includes_path in articlesections.php
includes_pathquery paramhtdocs/createArticlesPage.phpRemote file inclusion via includes_path in createArticlesPage.php
includes_pathquery paramhtdocs/guestbook.phpRemote file inclusion via includes_path in guestbook.php
includes_pathquery paramhtdocs/helpguide.phpRemote file inclusion via includes_path in helpguide.php
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jun 2026 22:38Current
7.5High risk
Vulners AI Score7.5
CVSS 27.5
EPSS0.01548
51