Vulnerabilities > CVE-2007-2254 - Remote Security vulnerability in Deltascripts PHP Classifieds 6.04
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PHP remote file inclusion vulnerability in admin/setup/level2.php in PHP Classifieds 6.04, and probably earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. NOTE: this product was referred to as "Allfaclassfieds" in the original disclosure.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |