2 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in chat.php in MySpeach 1.9 allows remote attackers to execute arbitrary PHP code via a URL in the myroot parameter, a different vector than CVE-2007-0498...
CVE-2007-0498
MySpeach 2.1 beta (and possibly earlier) is affected by CVE-2007-0498 via up.php, allowing remote PHP code execution through a URL parameter my[root]. This is a PHP remote file inclusion vulnerability with a base score of 7.5 (HIGH) and network attack vector, per NVD, and the documents do not pro...