Unrated severityNVD Advisory· Published Apr 12, 2007· Updated Jun 16, 2026
CVE-2007-1976
CVE-2007-1976
Description
PHP remote file inclusion vulnerability in index.php in the Virii Info 1.10 and earlier module for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the xoopsConfig[root_path] parameter. NOTE: the issue has been disputed by a reliable third party, stating that the application's checkSuperglobals function defends against the attack
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.10
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.