Unrated severityNVD Advisory· Published Apr 9, 2007· Updated Jun 16, 2026
CVE-2007-1895
CVE-2007-1895
Description
PHP remote file inclusion vulnerability in chat.php in Sky GUNNING MySpeach 3.0.7 and earlier, when used with PHP 5, allows remote attackers to execute arbitrary PHP code via an ftp URL in a my_ms[root] cookie, a different vector than CVE-2007-0491 and CVE-2006-4630.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:sky_gunning:myspeach:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sky_gunning:myspeach:*:*:*:*:*:*:*:*range: <=3.0.7
- (no CPE)range: <=3.0.7
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.