2 matches found
Immunity Canvas: DFBLOG4_EXEC
Name| dfblog4exec ---|--- CVE| CVE-2007-1525 Exploit Pack| CANVAS Description| Dayfox Blog4 exec Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Ninja Designs CVE Url: https://vulners.com/cve/CVE-2007-1525 CVE Name: CVE-2007-1525...
CVE-2007-1525
CVE-2007-1525 affects Dayfox Blog (dfblog) 4. The vulnerability is in the file that serves posts (posts.php) via the parameter cat passed to postpost.php, enabling direct static code injection and remote execution of arbitrary PHP by an attacker. Public references in connected documents indicate ...