Unrated severityNVD Advisory· Published Apr 10, 2007· Updated Jun 16, 2026
CVE-2007-1924
CVE-2007-1924
Description
Multiple PHP remote file inclusion vulnerabilities in phpContact allow remote attackers to execute arbitrary PHP code via a URL in the include_path parameter to (1) contact_business.php or (2) contact_person.php. NOTE: this issue is disputed by CVE and a reliable third party, because include_path is initialized to a fixed value before use
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:phpcontact:phpcontact:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpcontact:phpcontact:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.