Vulnerabilities > CVE-2007-1600 - Remote File Include vulnerability in Digital Eye Gallery Module.PHP

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
digital-eye-gallery
critical
exploit available

Summary

PHP remote file inclusion vulnerability in module.php in Digital Eye Gallery 1.1 Beta (aka 0.1.1b) allows remote attackers to execute arbitrary PHP code via a URL in the menu parameter.

Exploit-Db

descriptionDigital Eye CMS 0.1.1b (module.php) Remote File Inclusion Vulnerability. CVE-2007-1600. Webapps exploit for php platform
fileexploits/php/webapps/3533.txt
idEDB-ID:3533
last seen2016-01-31
modified2007-03-21
platformphp
port
published2007-03-21
reporterCold Zero
sourcehttps://www.exploit-db.com/download/3533/
titleDigital Eye CMS 0.1.1b module.php Remote File Inclusion Vulnerability
typewebapps