← back
CVE-2008-7034

CVE-2008-7034

EPSS 1.5%
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the _smarty_compile_path variable in the fetch function.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2008-02/0401.htmlhttp://osvdb.org/51018https://exchange.xforce.ibmcloud.com/vulnerabilities/40792http://www.securityfocus.com/bid/27960