Vulnerabilities > CVE-2007-1708 - Remote File Include vulnerability in TTCMS EZ_SQL.PHP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PHP remote file inclusion vulnerability in lib/db/ez_sql.php in ttCMS 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lib_path parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | ttCMS. CVE-2007-1708. Webapps exploit for php platform |
file | exploits/php/webapps/3563.txt |
id | EDB-ID:3563 |
last seen | 2016-01-31 |
modified | 2007-03-24 |
platform | php |
port | |
published | 2007-03-24 |
reporter | Kacper |
source | https://www.exploit-db.com/download/3563/ |
title | ttCMS <= 4 - ez_sql.php lib_path Remote File Inclusion Vulnerability |
type | webapps |