CVE-2007-2611

2007-05-11T10:19:00
ID CVE-2007-2611
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:32:00

Description

Multiple PHP remote file inclusion vulnerabilities in CGX 20050314 allow remote attackers to execute arbitrary PHP code via a URL in the pathCGX parameter to (1) mtdialogo.php, (2) ltdialogo.php, (3) login.php, and (4) logingecon.php in inc/; and multiple unspecified files in frm/, sql/, and cns/. Successful exploitation requires that "register_globals" is enabled.