Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...

CVE-2007-2422

Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...

CVE-2007-2422

Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...

PT-2007-3754 · Comdev · Comdev One Admin Modules Builder

Name of the Vulnerable Software and Affected Versions: Comdev One Admin Modules Builder modbuild version 4.1 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 "config-bak.php" or 2 "config.php" endpoints. However, it's noted...

CVE-2007-2422

The CVE-2007-2422 issue affects Comdev One Admin Modules Builder (modbuild) v4.1. A PHP Remote File Inclusion vulnerability exists via the path[docroot] parameter to the endpoints (1) config-bak.php and (2) config.php, enabling remote code execution. Root cause notes indicate unmodified scripts s...