Vulnerabilities > CVE-2007-1539 - Local File Include vulnerability in Pragmamx Landkarten 2.1

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
pragmamx
exploit available
NVD
Published: 2007-03-20
Updated: 2017-10-19

Summary

Directory traversal vulnerability in inc/map.func.php in pragmaMX Landkarten 2.1 module allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the module_name parameter, as demonstrated via a static PHP code injection attack in an Apache log file.

Vulnerable Configurations

Part Description Count
Application
Pragmamx
1

Exploit-Db

descriptionpragmaMX Module Landkarten 2.1 Local File Inclusion Exploit (win). CVE-2007-1539. Webapps exploit for php platform
fileexploits/php/webapps/3521.pl
idEDB-ID:3521
last seen2016-01-31
modified2007-03-19
platformphp
port
published2007-03-19
reporterbd0rk
sourcehttps://www.exploit-db.com/download/3521/
titlepragmaMX Module Landkarten 2.1 - Local File Inclusion Exploit win
typewebapps

References