CVE-2007-0596 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-0596

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

PHP remote file inclusion vulnerability in index/main.php in Aztek Forum 4.00 allows remote authenticated administrators to execute arbitrary PHP code via a URL in the PF[top_url] parameter.

Affected Software

Name	Vendor	Start Version	End Version
Aztek_forum	Aztek_forum	4.0 (including)	4.0 (including)

References

http://acid-root.new.fr/poc/21070125.txt
http://osvdb.org/33593
http://www.securityfocus.com/archive/1/458076/100/0/threaded
http://www.securityfocus.com/archive/1/458123/100/0/threaded
http://acid-root.new.fr/poc/21070125.txt
http://osvdb.org/33593
http://www.securityfocus.com/archive/1/458076/100/0/threaded
http://www.securityfocus.com/archive/1/458123/100/0/threaded