← back
CVE-2007-2167

CVE-2007-2167

EPSS 44.4%
Static code injection vulnerability in process.php in AimStats 3.2 allows remote attackers to inject PHP code into config.php via the number parameter in an update action.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/3762unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/24955https://exchange.xforce.ibmcloud.com/vulnerabilities/33742https://www.exploit-db.com/exploits/3762http://www.securityfocus.com/bid/23573http://www.vupen.com/english/advisories/2007/1447http://www.x-pose.org/aimstats.php