E107 : Security Vulnerabilities, CVEs, Published In 2008 (File inclusion)
PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.
Max CVSS
10.0
EPSS Score
2.19%
Published
2008-04-27
Updated
2017-09-29
1 vulnerabilities found