Vulnerabilities > CVE-2007-0758 - Remote File Include vulnerability in PHPprobid 5.24

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
phpprobid
exploit available

Summary

PHP remote file inclusion vulnerability in lang.php in PHPProbid 5.24 allows remote attackers to execute arbitrary PHP code via a URL in the SRC attribute of an HTML element in the lang parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part Description Count
Application
Phpprobid
1

Exploit-Db

descriptionPHPProbid 5.24 Lang.PHP Remote File Include Vulnerability. CVE-2007-0758. Webapps exploit for php platform
idEDB-ID:29560
last seen2016-02-03
modified2007-02-02
published2007-02-02
reporterHasadya Raed
sourcehttps://www.exploit-db.com/download/29560/
titlePHPProbid 5.24 Lang.PHP Remote File Include Vulnerability