Vulnerabilities > CVE-2007-0170 - Remote File Include vulnerability in Allmyphp Allmyvisitors 0.4.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
allmyphp
exploit available
NVD
Published: 2007-01-11
Updated: 2017-10-19

Summary

PHP remote file inclusion vulnerability in index.php in AllMyVisitors 0.4.0 allows remote attackers to execute arbitrary PHP code via a URL in the AMV_serverpath parameter.

Vulnerable Configurations

Part Description Count
Application
Allmyphp
1

Exploit-Db

descriptionAllMyVisitors 0.4.0 (index.php) Remote File Inclusion Vulnerability. CVE-2007-0170. Webapps exploit for php platform
fileexploits/php/webapps/3097.txt
idEDB-ID:3097
last seen2016-01-31
modified2007-01-07
platformphp
port
published2007-01-07
reporterbd0rk
sourcehttps://www.exploit-db.com/download/3097/
titleAllMyVisitors 0.4.0 index.php Remote File Inclusion Vulnerability
typewebapps

References