CVE-2007-2167

N/A Unknown

Published: April 22, 2007 Modified: April 23, 2026

Description

Static code injection vulnerability in process.php in AimStats 3.2 allows remote attackers to inject PHP code into config.php via the number parameter in an update action.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/24955

Source: cve@mitre.org

http://www.securityfocus.com/bid/23573

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1447

Source: cve@mitre.org

http://www.x-pose.org/aimstats.php

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/33742

Source: cve@mitre.org

https://www.exploit-db.com/exploits/3762

Source: cve@mitre.org

http://secunia.com/advisories/24955