Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4818

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4818
Last Modified 15 Nov 2008 01:58:38
Published 11 Sep 2007 03:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4818

Summary

Multiple PHP remote file inclusion vulnerabilities in Txx CMS 0.2 allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) addons/plugin.php, (2) addons/sidebar.php, (3) mail/index.php, or (4) mail/mailbox.php in modules/.

Vulnerable Systems

Application

  • Txx Cms 0.2


References

BID - 25597

BUGTRAQ - 20070908 TxxCMS_Multiple File inclusion Vulnerabilies

MILW0RM - 4381

OSVDB - 38393

OSVDB - 38392

OSVDB - 38391

OSVDB - 38390

XF - txxcms-docroot-file-include(36511)

SREASON - 3116


Last Updated: 27 May 2016 10:45:58