MX Glance

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-03	CVE-2007-5178	Code Injection vulnerability in Mxbb MX Glance 2.3.3 contrib/mx_glance_sdesc.php in the mx_glance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mx_root_path parameter. network mxbb CWE-94	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.