3 matches found
CVE-2007-0489
PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2007-0489
PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2007-0489
CVE-2007-0489 corresponds to a PHP remote file inclusion vulnerability in VisoHotlink 1.01 (and possibly older) affecting the includes/functions.visohotlink.php file. The underling issue is that the mosConfig_absolute_path parameter can be supplied via a URL to remotely execute arbitrary PHP code...