2 matches found
Immunity Canvas: SEGUE_INCLUDE
Name| segueinclude ---|--- CVE| CVE-2007-5186 Exploit Pack| CANVAS Description| Segue remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Segue CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5186 CVE Name: CVE-2007-5186...
CVE-2007-5186
Segue CMS suffers a PHP remote file inclusion via the themesdir parameter in index.php (and related themes/settings scripts) for versions 1.8.4 and earlier. The underlying issue is unsanitized input used to include PHP code in themes/program/themesettings.inc.php, which can enable arbitrary code ...