Unrated severityNVD Advisory· Published Feb 22, 2007· Updated Jun 16, 2026
CVE-2007-1073
CVE-2007-1073
Description
Static code injection vulnerability in install.php in mcRefer allows remote attackers to execute arbitrary PHP code via the bgcolor parameter, which is inserted into mcrconf.inc.php.
Affected products
2Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.