RSS   Vulnerabilities for 'Post revolution'   RSS

2007-04-24
 
CVE-2007-2201

CWE-Other
 

 
Multiple PHP remote file inclusion vulnerabilities in Post Revolution 6.6 and 7.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the dir parameter to (1) common.php or (2) themes/default/preview_post_completo.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top