CVE-2008-7067

2009-08-2510:00:00

mitre

www.cve.org

AI Score

7.5

Confidence

High

EPSS

0.023

Percentile

89.6%

JSON

PHP remote file inclusion vulnerability in admin/plugins/Online_Users/main.php in PageTree CMS 0.0.2 BETA 0001 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[PT_Config][dir][data] parameter.

References

www.securityfocus.com/bid/32510

exchange.xforce.ibmcloud.com/vulnerabilities/46922

www.exploit-db.com/exploits/7255