Vulnerabilities > CVE-2007-0679 - Remote File Include vulnerability in Nicolas Grandjean PHPmyring 4.1.0B/4.1.1B/4.1.2B

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
nicolas-grandjean
exploit available

Summary

PHP remote file inclusion vulnerability in lang/leslangues.php in Nicolas Grandjean PHPMyRing 4.1.3b and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fichier parameter.

Exploit-Db

descriptionPHPMyRing <= 4.1.3b (fichier) Remote File Include Vulnerability. CVE-2007-0679. Webapps exploit for php platform
fileexploits/php/webapps/3238.txt
idEDB-ID:3238
last seen2016-01-31
modified2007-01-31
platformphp
port
published2007-01-31
reporterajann
sourcehttps://www.exploit-db.com/download/3238/
titlePHPMyRing <= 4.1.3b fichier Remote File Include Vulnerability
typewebapps