Unrated severityNVD Advisory· Published Nov 30, 2007· Updated Apr 23, 2026

CVE-2007-6179

Description

Multiple PHP remote file inclusion vulnerabilities in Charray's CMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the ccms_library_path parameter to (1) markdown.php and (2) gallery.php in decoder/.

Affected products

Kinson Chan Charray/CMS
cpe:2.3:a:kinson_chan_charray:cms:0.9.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/26619nvdExploit
osvdb.org/38912nvd
osvdb.org/38913nvd
secunia.com/advisories/27854nvd
exchange.xforce.ibmcloud.com/vulnerabilities/38678nvd
www.exploit-db.com/exploits/4672nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000