Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6324

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-6324
Last Modified 05 Sep 2008 05:32:57
Published 13 Dec 2007 02:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6324

Summary

PHP remote file inclusion vulnerability in head.php in CityWriter 0.9.7 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.

Vulnerable Systems

Application

  • City Writer Citywriter 0.9.7


References

MILW0RM - 4726

XF - citywriter-head-file-include(39012)

BID - 26848

SECUNIA - 28058


Last Updated: 27 May 2016 10:46:28