CVE-2007-0863 Information

Feb 14, 2021 cve

Description

LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks PHP remote file inclusion vulnerability in Trevorchan 0.7 and earlier allows remote attackers to execute arbitrary code via the tc_config[rootdir] parameter to (1) upgrade.php (2) paint_save.php (3) menu.php (4) manage.php and (5) banned.php. NOTE: his issue has been disputed by reliable third parties who state that the variable is set before use in config.php.

Reference

http://osvdb.org/33475 http://securitytracker.com/id?1017512 http://www.attrition.org/pipermail/vim/2007-January/001241.html

Share on: