Unrated severityNVD Advisory· Published Aug 24, 2009· Updated Jun 16, 2026
CVE-2008-7034
CVE-2008-7034
Description
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the _smarty_compile_path variable in the fetch function.
Affected products
2cpe:2.3:a:tigran_abrahamyan:phpecho_cms:2.0:rc3:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:tigran_abrahamyan:phpecho_cms:2.0:rc3:*:*:*:*:*:*
- (no CPE)range: 2.0 rc3
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.