CVE-2007-6191

Multiple PHP remote file inclusion vulnerabilities in Armin Burger p.mapper 3.2.0 beta3 allow remote attackers to execute arbitrary PHP code via a URL in the _SESSION[PM_INCPHP] parameter to (1) incphp/globals.php or (2) plugins/export/mc_table.php. NOTE: it could be argued that this vulnerability is caused by a problem in PHP and the proper fix should be in PHP; if so, then this should not be treated as a vulnerability in p.mapper.
Configurations

Configuration 1

cpe:2.3:a:pmapper:p.mapper:3.2.0_beta3:*:*:*:*:*:*:*

Information

Published : 2007-11-30 01:46

Updated : 2017-07-29 01:34


NVD link : CVE-2007-6191

Mitre link : CVE-2007-6191

Products Affected
No products.
CWE