2 matches found
CVE-2007-4737
CVE-2007-4737 affects the SpeedTech PHP Library (STPHPLibrary) 0.8.0. Affected component: STPHPLIB_DIR handling in PHP files stphpapplication.php, stphpbtnimage.php, and stphpform.php; root cause: remote file inclusion via a URL parameter, enabling arbitrary PHP code execution on a remote attacke...
CVE-2007-4738
CVE-2007-4738 describes multiple PHP remote file inclusion vulnerabilities in SpeedTech PHP Library (STPHPLibrary) 0.8.0. An attacker can trigger arbitrary PHP code execution by supplying a URL in the db_conf or ADODB_DIR parameter to utils/stphpimage_show.php, or by supplying a URL in the STPHPL...