CVE-2007-4170

2007-08-07T10:17:00
ID CVE-2007-4170
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:33:00

Description

Multiple PHP remote file inclusion vulnerabilities in AL-Athkar 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) include parameter to (a) Main.php and (b) get.php and the (2) exec parameter to (c) count.php.