2 matches found
CVE-2007-3066
Multiple PHP remote file inclusion vulnerabilities in phpReactor 1.2.7 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pathtohomedir parameter to 1 view.inc.php, 2 users.inc.php, 3 updatecms.inc.php, and 4 polls.inc.php in inc/; and other unspecified files,...
CVE-2007-3066
CVE-2007-3066 involves multiple PHP remote file inclusion flaws in php(Reactor) versions up to and including 1.2.7, where remote attackers can trigger arbitrary PHP code execution by supplying a URL for pathtohomedir to files in inc/ (notably view.inc.php, users.inc.php, updatecms.inc.php, and po...