CVE-2007-2457

2007-05-02T18:19:00
ID CVE-2007-2457
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:44:00

Description

PHP remote file inclusion vulnerability in resources/includes/class.Smarty.php in Pixaria Gallery before 1.4.3 allows remote attackers to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter.