Unrated severityNVD Advisory· Published Apr 10, 2007· Updated Jun 16, 2026
CVE-2007-1908
CVE-2007-1908
Description
PHP file inclusion vulnerability in php121db.php in PHP121 Instant Messenger 2.2 allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the php121dir parameter, which is accessed by the file_exists function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =2.2
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.