PHP Remote File Inclusion Vulnerability in SezHoo Product by SezHoo
CVE-2008-4704

Currently unrated

Key Information:

Vendor: Mitre
Status: Sezhoo
Vendor: CVE Published:; 23 October 2008

What is CVE-2008-4704?

The SezHoo product version 0.1 contains a vulnerability in the SezHooTabsAndActions.php file, allowing remote attackers to exploit a PHP remote file inclusion flaw. This vulnerability enables malicious users to execute arbitrary PHP code by manipulating the IP parameter in a URL. As a result, unauthorized access and manipulation of the affected system can occur, posing significant security risks to users and their data.

References

http://www.securityfocus.com/bid/31756

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/45859

vdb-entryx_refsource_XF

https://www.exploit-db.com/exploits/6751

exploitx_refsource_EXPLOIT-DB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 23, 2008
Vulnerability Reserved
Oct 23, 2008

Mitre

What is CVE-2008-4704?

References

Timeline