CVE-2007-4738
Description
Multiple PHP remote file inclusion vulnerabilities in SpeedTech PHP Library (STPHPLibrary) 0.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) db_conf or (2) ADODB_DIR parameter to utils/stphpimage_show.php; or a URL in the STPHPLIB_DIR parameter to (3) stphpbutton.php, (4) stphpcheckbox.php, (5) stphpcheckboxwithcaption.php, (6) stphpcheckgroup.php, (7) stphpcomponent.php, (8) stphpcontrolwithcaption.php, (9) stphpedit.php, (10) stphpeditwithcaption.php, (11) stphphr.php, (12) stphpimage.php, (13) stphpimagewithcaption.php, (14) stphplabel.php, (15) stphplistbox.php, (16) stphplistboxwithcaption.php, (17) stphplocale.php, (18) stphppanel.php, (19) stphpradiobutton.php, (20) stphpradiobuttonwithcaption.php, (21) stphpradiogroup.php, (22) stphprichbutton.php, (23) stphpspacer.php, (24) stphptable.php, (25) stphptablecell.php, (26) stphptablerow.php, (27) stphptabpanel.php, (28) stphptabtitle.php, (29) stphptextarea.php, (30) stphptextareawithcaption.php, (31) stphptoolbar.php, (32) stphpwindow.php, (33) stphpxmldoc.php, or (34) stphpxmlelement.php, a different set of vectors than CVE-2007-4737. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:speedtech:stphplibrary:0.8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:speedtech:stphplibrary:0.8.0:*:*:*:*:*:*:*
- (no CPE)range: =0.8.0
- Range: =0.8.0
Patches
Vulnerability mechanics
References
36- secunia.com/advisories/26658nvdVendor Advisory
- osvdb.org/39073nvd
- osvdb.org/39074nvd
- osvdb.org/39075nvd
- osvdb.org/39076nvd
- osvdb.org/39077nvd
- osvdb.org/39078nvd
- osvdb.org/39079nvd
- osvdb.org/39080nvd
- osvdb.org/39081nvd
- osvdb.org/39082nvd
- osvdb.org/39083nvd
- osvdb.org/39084nvd
- osvdb.org/39085nvd
- osvdb.org/39086nvd
- osvdb.org/39087nvd
- osvdb.org/39088nvd
- osvdb.org/39089nvd
- osvdb.org/39090nvd
- osvdb.org/39091nvd
- osvdb.org/39092nvd
- osvdb.org/39093nvd
- osvdb.org/39094nvd
- osvdb.org/39095nvd
- osvdb.org/39096nvd
- osvdb.org/39097nvd
- osvdb.org/39098nvd
- osvdb.org/39099nvd
- osvdb.org/39100nvd
- osvdb.org/39101nvd
- osvdb.org/39102nvd
- osvdb.org/39103nvd
- osvdb.org/39104nvd
- osvdb.org/39105nvd
- www.securityfocus.com/bid/25525nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36417nvd
News mentions
0No linked articles in our index yet.