Vulnerabilities > CVE-2007-1621 - Remote File Include vulnerability in Active PHP Bookmarks Head.PHP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes (APB) 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APB_SETTINGS[template_path] parameter. NOTE: this issue might be related to CVE-2003-1254.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit. CVE-2007-1621. Webapps exploit for php platform |
file | exploits/php/webapps/3504.pl |
id | EDB-ID:3504 |
last seen | 2016-01-31 |
modified | 2007-03-17 |
platform | php |
port | |
published | 2007-03-17 |
reporter | GoLd_M |
source | https://www.exploit-db.com/download/3504/ |
title | Active PHP Bookmark Notes <= 0.2.5 - Remote File Inclusion Exploit |
type | webapps |