PHP File Inclusion Vulnerabilities in WGS-PPC by WGS
CVE-2007-0167

Currently unrated

Key Information:

Vendor

Wgs-ppc

Status
Wgs-ppc
Ppc Search Engine
Vendor
CVE Published:
10 January 2007

What is CVE-2007-0167?

WGS-PPC contains multiple vulnerabilities that allow remote attackers to exploit PHP file inclusion weaknesses. This can enable unauthorized execution of PHP code through manipulated URLs in critical files such as config_admin.php, config_main.php, and various others within the application structure. Attackers can leverage these vulnerabilities to gain control over the server, making it essential for users to apply appropriate security measures.

References

https://www.exploit-db.com/exploits/3104
exploitx_refsource_EXPLOIT-DB
http://www.osvdb.org/33449
vdb-entryx_refsource_OSVDB
http://www.osvdb.org/33445
vdb-entryx_refsource_OSVDB

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.