Vulnerabilities > CVE-2007-0171 - Remote File Include vulnerability in Retired: AllMyLinks

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
voice-of-web
exploit available

Summary

PHP remote file inclusion vulnerability in index.php in AllMyLinks 0.5.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AML_opensite parameter.

Exploit-Db

descriptionAllMyLinks. CVE-2007-0171. Webapps exploit for php platform
fileexploits/php/webapps/3096.txt
idEDB-ID:3096
last seen2016-01-31
modified2007-01-07
platformphp
port
published2007-01-07
reporterGoLd_M
sourcehttps://www.exploit-db.com/download/3096/
titleAllMyLinks <= 0.5.0 - index.php Remote File Include Vulnerability
typewebapps