PHP remote file inclusion vulnerability in chat.php in Sky GUNNING MySpeach 3.0.7 and earlier, when used with PHP 5, allows remote attackers to execute arbitrary PHP code via an ftp URL in a my_ms[root] cookie, a different vector than CVE-2007-0491 and CVE-2006-4630.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-04-09T20:00:00
Updated: 2024-08-07T13:13:41.381Z
Reserved: 2007-04-09T00:00:00
Link: CVE-2007-1895
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-04-09T20:19:00.000
Modified: 2024-11-21T00:29:24.630
Link: CVE-2007-1895
Redhat
No data.