Vulnerabilities > CVE-2007-1299 - Remote File Include vulnerability in Mani Stats Reader Mani Stats Reader 1.2

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
mani-stats-reader
exploit available

Summary

PHP remote file inclusion vulnerability in index.php in Mani Stats Reader 1.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ipath parameter.

Vulnerable Configurations

Part Description Count
Application
Mani_Stats_Reader
1

Exploit-Db

descriptionMani Stats Reader <= 1.2 (ipath) Remote File Include Vulnerability. CVE-2007-1299. Webapps exploit for php platform
fileexploits/php/webapps/3398.txt
idEDB-ID:3398
last seen2016-01-31
modified2007-03-02
platformphp
port
published2007-03-02
reportermozi
sourcehttps://www.exploit-db.com/download/3398/
titleMani Stats Reader <= 1.2 ipath Remote File Include Vulnerability
typewebapps