|
CVE Reference: CVE-2007-1539
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2007-1539
|
|
Description:
Directory traversal vulnerability in inc/map.func.php in pragmaMX Landkarten 2.1 module allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the module_name parameter, as demonstrated via a static PHP code injection attack in an Apache log file.
|
|
CVE Status:
Candidate
|
|
References:
XF
http://xforce.iss.net/xforce/xfdb/33084
SAID
Secunia Advisory: SA24589
OSVDB
34306
MILW0RM
http://milw0rm.com/exploits/3521
BID
23044
|
|
|
Return to the previous page.
|
