Vulnerability in N/a
CVE-2007-3228
PHP remote file inclusion vulnerability in saf/lib/PEAR/PhpDocumentor/Documentation/tests/bug-559668.php in Sitellite CMS 4.2.12 and earlier might allow remote attackers to execute arbitrary PHP code via a URL in the FORUM[LIB] parameter…
EPSS: 0.814 (99.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 20070614 Sitellite CMS <= 4.2.12 (559668.php) Remote File Inclusion Vulnerability (mailing-list, x_refsource_VIM)
- 20070619 Re: Sitellite cms <= 4.2.12 RFI Vuln (mailing-list, x_refsource_BUGTRAQ)
- 4071 (exploit, x_refsource_EXPLOIT-DB)
- 24474 (vdb-entry, x_refsource_BID)
- 36816 (x_refsource_OSVDB, vdb-entry)
- sitellite-forumlib-file-include(34860) (vdb-entry, x_refsource_XF)
- 20070616 Sitellite cms <= 4.2.12 RFI Vuln (mailing-list, x_refsource_BUGTRAQ)
- ADV-2007-2207 (vdb-entry, x_refsource_VUPEN)
- 20070614 Sitellite CMS <= 4.2.12 (559668.php) Remote File Inclusion Vulnerability (mailing-list, x_refsource_VIM)