Security Advisory

CVE-2007-1976

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-04-12 00:00:00

Last updated 2024-08-07 13:13:41

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in index.php in the Virii Info 1.10 and earlier module for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the xoopsConfig[root_path] parameter. NOTE: the issue has been disputed by a reliable third party, stating that the applications checkSuperglobals function defends against the attack

← Browse all CVEs View on cve.org ↗