3 matches found
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 level parameter to a installmodule.php and b uninstallmodule.php in upload/xax/admin/modules/, c upload/xax/admin/patch/index.php, and d...
Immunity Canvas: OSSIGENO_INCLUDE
Name| ossigenoinclude ---|--- CVE| CVE-2007-5234 Exploit Pack| CANVAS Description| Ossigeno CMS remote file include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Ossigeno CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5234 CVE Name: CVE-2007-5234...
CVE-2007-5234
CVE-2007-5234 affects Ossigeno CMS 2.2 alpha3. A PHP remote file inclusion vulnerability exists in upload/common/footer.php, allowing an attacker to execute arbitrary PHP code via the level parameter. The issue is confirmed across multiple sources; exploitation details are not provided in these d...