PHP Remote File Inclusion Vulnerabilities in Prototype Application by Prototype
CVE-2007-3217

Currently unrated

Key Information:

Vendor

Prototype Of An PHP Application

Status
Prototype Of An PHP Application
Vendor
CVE Published:
14 June 2007

What is CVE-2007-3217?

The Prototype of a PHP application version 0.1 contains multiple PHP remote file inclusion vulnerabilities. These vulnerabilities allow remote attackers to execute arbitrary PHP code by injecting malicious URLs into various parameters, specifically through 'path_inc'. The affected files include index.php in several directories such as 'gestion/', 'ident/', 'menu/', and 'param/', among others. Successful exploitation can compromise the integrity and confidentiality of the web application, allowing unauthorized access to sensitive data and system components.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://osvdb.org/37158
vdb-entryx_refsource_OSVDB
http://securityreason.com/securityalert/2812
third-party-advisoryx_refsource_SREASON
http://osvdb.org/37155
vdb-entryx_refsource_OSVDB

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.