| ID | CVE-2007-4907 | ||||||
| Sažetak | Multiple PHP remote file inclusion vulnerabilities in X-Cart allow remote attackers to execute arbitrary PHP code via a URL in the xcart_dir parameter to (1) config.php, (2) prepare.php, (3) smarty.php, (4) customer/product.php, (5) provider/auth.php, and (6) admin/auth.php. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:L/Au:N/C:P/I:P/A:P | ||||||
| Zadnje važnije ažuriranje | 29-09-2017 - 01:29 | ||||||
| Objavljeno | 17-09-2007 - 16:17 |
