CVEs-PoC/2007/CVE-2007-2078.md

CVE-2007-2078

Description

PHP remote file inclusion vulnerability in index.php in Maian Weblog 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_folder parameter. NOTE: this issue was disputed by a third party researcher, since the path_to_folder variable is initialized before use

POC

Reference

• http://securityreason.com/securityalert/2582

Github

No PoCs found on GitHub currently.