CVE-2007-1136

index.php in WebMplayer before 0.6.1-Alpha allows remote attackers to execute arbitrary code via shell metacharacters in an exec function call. NOTE: some sources have referred to this as eval injection in the param parameter, but CVE source inspection suggests that this is erroneous.
Configurations

Configuration 1

cpe:2.3:a:webmplayer:webmplayer:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.3:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.5:alpha:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:*:alpha:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.1:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.5.1:alpha:*:*:*:*:*:*
cpe:2.3:a:webmplayer:webmplayer:0.4:*:*:*:*:*:*:*

Information

Published : 2007-03-02 09:18

Updated : 2011-03-08 02:51


NVD link : CVE-2007-1136

Mitre link : CVE-2007-1136

Products Affected
No products.
CWE