Описание
Multiple PHP remote file inclusion vulnerabilities in sPHPell 1.01 allow remote attackers to execute arbitrary PHP code via a URL in the SpellIncPath parameter to (1) spellcheckpageinc.php, (2) spellchecktext.php, (3) spellcheckwindow.php, or (4) spellcheckwindowframeset.php.
Multiple PHP remote file inclusion vulnerabilities in sPHPell 1.01 allow remote attackers to execute arbitrary PHP code via a URL in the SpellIncPath parameter to (1) spellcheckpageinc.php, (2) spellchecktext.php, (3) spellcheckwindow.php, or (4) spellcheckwindowframeset.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3522
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35194
- https://www.exploit-db.com/exploits/4132
- http://osvdb.org/38964
- http://osvdb.org/38965
- http://osvdb.org/38966
- http://osvdb.org/38967
- http://www.securityfocus.com/bid/24727
- http://www.vupen.com/english/advisories/2007/2408
EPSS
CVE ID
Связанные уязвимости
Multiple PHP remote file inclusion vulnerabilities in sPHPell 1.01 allow remote attackers to execute arbitrary PHP code via a URL in the SpellIncPath parameter to (1) spellcheckpageinc.php, (2) spellchecktext.php, (3) spellcheckwindow.php, or (4) spellcheckwindowframeset.php.
EPSS