Directory traversal vulnerability in includes/block.php in Agares Media phpAutoVideo 2.21 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the selected_provider parameter.
References
Configurations
History
No history.
Information
Published : 2008-01-03 23:46
Updated : 2024-02-28 11:01
NVD link : CVE-2007-6615
Mitre link : CVE-2007-6615
CVE.ORG link : CVE-2007-6615
JSON object : View
Products Affected
agares_media
- phpautovideo
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')