2 matches found
Immunity Canvas: XOOPS_HOROSCOPE
Name| xoopshoroscope ---|--- CVE| CVE-2007-3236 Exploit Pack| CANVAS Description| Xoops Horoscope Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Xoops CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3236 CVE Name: CVE-2007-3236...
CVE-2007-3236
The CVE-2007-3236 issue affects the Horoscope 1.0 module for XOOPS. A PHP remote file inclusion vulnerability in footer.php allows an attacker to execute arbitrary PHP code by supplying a URL in the xoopsConfig[root_path] parameter, enabling remote code execution. The vulnerability is described w...