2 matches found
Immunity Canvas: ANYINVENTORY_INCLUDE
Name| anyinventoryinclude ---|--- CVE| CVE-2007-4744 Exploit Pack| CANVAS Description| AnyInventory = 2.0 Remote file inclusion Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Ramapo.edu CVE Url: https://vulners.com/cve/CVE-2007-4744 CVE Name: CVE-2007-4744...
CVE-2007-4744
Vulnerability summary (CVE-2007-4744) : A PHP remote file inclusion flaw in AnyInventory 1.9.1 and 2.0 enables an attacker to execute arbitrary PHP code when register_globals is on. The issue is triggered via a URL in the DIR_PREFIX parameter within environment.php, allowing remote code execution...