NuytsTech Security

CVE-2007-3289

by ·

PHP remote file inclusion vulnerability in spaw/spaw_control.class.php in the WiwiMod 0.4 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.

Date published : 2007-06-20

https://www.exploit-db.com/exploits/4084

http://osvdb.org/38473

Tags: