CVE-2007-4934

CVE-2007-4934 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in phpFFL 1.24 allow remote attackers to execute arbitrary PHP code via a URL in the PHPFFL_FILE_ROOT parameter to (1) program_files/livedraft/livedraft.php or (2) program_files/livedraft/admin.php.

Learn more about our Web Application Penetration Testing UK.