Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 20/12/2007 Updated: 29/09/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in Form tools 1.5.0b allow remote malicious users to execute arbitrary PHP code via a URL in the g_root_dir parameter to (1) admin_page_open.php and (2) client_page_open.php in global/templates/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
form tools form tools 1.5.0b

# Name : Form tools 150b Remote File Include # Download From : wwwformtoolsorg/downloadphp # Found By : RoMaNcYxHaCkEr # Home Page : Not Yet :( ============================================================================ # Vulne Code In Files admin_page_openphp & client_page_openphp In Line 3 : <?php require("$g_root_dir/gl ...

CWE-94 http://osvdb.org/40254 http://osvdb.org/40255 https://www.exploit-db.com/exploits/4736 https://nvd.nist.gov https://www.exploit-db.com/exploits/4736/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6464

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect