Unrated severityNVD Advisory· Published Apr 22, 2007· Updated Jun 16, 2026
CVE-2007-2166
CVE-2007-2166
Description
PHP remote file inclusion vulnerability in administration/user/lib/group.inc.php in OpenSurveyPilot (osp) 1.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cfgPathToProjectAdmin parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:opensurveypilot:opensurveypilot:*:*:*:*:*:*:*:*Range: <=1.2.1
- Range: <=1.2.1
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.