CVE-2007-3460

2007-06-27T18:30:00
ID CVE-2007-3460
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:32:00

Description

Multiple PHP remote file inclusion vulnerabilities in index.php3 in EVA-Web 1.1 through 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) aide or (2) perso parameter.