CVE-2007-3460 Information
Feb 14, 2021
cve
Description
Multiple PHP remote file inclusion vulnerabilities in index.php3 in EVA-Web 1.1 through 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) aide or (2) perso parameter.
Reference
http://osvdb.org/36327 http://secunia.com/advisories/25845 http://spip-edu.edres74.net/article.php3?id_article=210 http://www.securityfocus.com/bid/24664 https://exchange.xforce.ibmcloud.com/vulnerabilities/35091 https://www.exploit-db.com/exploits/4112
Share on: