CVE-2007-1855

Multiple PHP remote file inclusion vulnerabilities in smarty/smarty_class.php in Shop-Script FREE allow remote attackers to execute arbitrary PHP code via a URL in the (1) _smarty_compile_path, (2) smarty_compile_path, (3) get_plugin_filepath, (4) smarty_dir, and (5) filename parameters. NOTE: this issue might be related to CVE-2006-7105.
Configurations

Configuration 1

cpe:2.3:a:webasyst_llc:shop-script:*:*:free:*:*:*:*:*

Information

Published : 2007-04-03 04:19

Updated : 2018-10-16 04:40


NVD link : CVE-2007-1855

Mitre link : CVE-2007-1855

Products Affected
No products.