Vulnerability in N/a
CVE-2007-3221
PHP remote file inclusion vulnerability in admin/spaw/spaw_control.class.php in the XT-Conteudo module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a du…
EPSS: 0.659 (98.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- ADV-2007-2205 (vdb-entry, x_refsource_VUPEN)
- 25667 (x_refsource_SECUNIA, third-party-advisory)
- xoops-xtconteudo-spawcontrol-file-include(34855) (vdb-entry, x_refsource_XF)
- 36306 (x_refsource_OSVDB, vdb-entry)
- 4069 (exploit, x_refsource_EXPLOIT-DB)
- 24470 (vdb-entry, x_refsource_BID)