Security Advisory

CVE-2008-7034

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-08-24 10:00:00

Last updated 2024-08-07 11:49:02

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the _smarty_compile_path variable in the fetch function.

← Browse all CVEs View on cve.org ↗