CVE-2007-3792 Information

Description

Multiple PHP remote file inclusion vulnerabilities in AzDG Dating Gold 3.0.5 allow remote attackers to execute arbitrary PHP code via a URL in the int_path parameter to (1) header.php (2) footer.php or (3) secure.admin.php in templates/.

Reference

http://osvdb.org/36262 http://osvdb.org/36263 http://osvdb.org/36264 http://securityreason.com/securityalert/2888 http://www.securityfocus.com/archive/1/473664/100/0/threaded http://www.securityfocus.com/bid/24910 https://exchange.xforce.ibmcloud.com/vulnerabilities/35428