Vulnerability in Achievo
CVE-2007-2736
PHP remote file inclusion vulnerability in index.php in Achievo 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter.
EPSS: 0.041 (89.4th percentile) — read the EPSS interpretation.
Affected products
References
- cve@mitre.org (exploit, x_refsource_EXPLOIT-DB)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (vdb-entry, x_refsource_BID)