CVE-2007-2328

2007-04-2700:00:00

mitre

www.cve.org

AI Score

7.5

Confidence

High

EPSS

0.012

Percentile

85.2%

JSON

PHP remote file inclusion vulnerability in addvip.php in phpMYTGP 1.4b allows remote attackers to execute arbitrary PHP code via a URL in the msetstr[PROGSDIR] parameter.

References

osvdb.org/34161

securityreason.com/securityalert/2636

www.securityfocus.com/archive/1/466845/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/33880