Vulnerabilities > CVE-2007-1982 - Unspecified vulnerability in Really Simple PHP and Ajax Really Simple PHP and Ajax

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
really-simple-php-and-ajax
exploit available
NVD
Published: 2007-04-12
Updated: 2024-11-21

Summary

Multiple PHP remote file inclusion vulnerabilities in Really Simple PHP and Ajax (RSPA) 2007-03-23 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) __IncludeFilePHPClass, (2) __ClassPath, and (3) __class parameters to (a) rspa/framework/Controller_v5.php, and (b) rspa/framework/Controller_v4.php.

Vulnerable Configurations

Part Description Count
Application
Really_Simple_Php_And_Ajax
1

Exploit-Db

descriptionReally Simple PHP and Ajax (RSPA) 2007-03-23 RFI Vulnerability. CVE-2007-1851,CVE-2007-1982. Webapps exploit for php platform
fileexploits/php/webapps/3641.txt
idEDB-ID:3641
last seen2016-01-31
modified2007-04-02
platformphp
port
published2007-04-02
reporterHamid Ebadi
sourcehttps://www.exploit-db.com/download/3641/
titleReally Simple PHP and Ajax RSPA 2007-03-23 RFI Vulnerability
typewebapps

References