Vulnerabilities > CVE-2007-0395 - Remote File Include vulnerability in Comvironment 4.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
comvironment
exploit available

Summary

PHP remote file inclusion vulnerability in libraries/grab_globals.lib.php in ComVironment 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter.

Vulnerable Configurations

Part Description Count
Application
Comvironment
1

Exploit-Db

descriptionComVironment 4.0 (grab_globals.lib.php) Remote File Include Vulnerability. CVE-2007-0395. Webapps exploit for php platform
fileexploits/php/webapps/3152.txt
idEDB-ID:3152
last seen2016-01-31
modified2007-01-18
platformphp
port
published2007-01-18
reporterGoLd_M
sourcehttps://www.exploit-db.com/download/3152/
titleComVironment 4.0 grab_globals.lib.php Remote File Include Vulnerability
typewebapps

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:84148
last seen2017-11-19
modified2014-07-01
published2014-07-01
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-84148
titleApple Mac OS X 10.5.x Mail Arbitrary Code Execution Vulnerability