CVE-2007-2067 Information

Feb 14, 2021 cve

Description

Multiple PHP remote file inclusion vulnerabilities in Marco Antonio Islas Cruz Web Slider (WebSlider) 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) index.php (2) modules/pdf.php (3) plugins/highlight.php or (4) include/modules.php.

Reference

http://osvdb.org/37436 http://osvdb.org/37437 http://osvdb.org/37438 http://osvdb.org/37439 http://www.vupen.com/english/advisories/2007/1397 https://exchange.xforce.ibmcloud.com/vulnerabilities/33689 https://www.exploit-db.com/exploits/3745

Share on: