NuytsTech Security

CVE-2007-4737

by ·

Multiple PHP remote file inclusion vulnerabilities in SpeedTech PHP Library (STPHPLibrary) 0.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the STPHPLIB_DIR parameter to (1) stphpapplication.php, (2) stphpbtnimage.php, or (3) stphpform.php.

Date published : 2007-09-06

http://www.securityfocus.com/bid/25525

https://www.exploit-db.com/exploits/4358

Tags: