CVE-2007-2260

N/A Unknown

Published: April 25, 2007 Modified: April 23, 2026

Description

Multiple PHP remote file inclusion vulnerabilities in bibtex mase beta 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the bibtexrootrel parameter to (1) unavailable.php, (2) source.php, (3) log.php, (4) latex.php, (5) indexinfo.php, (6) index.php, (7) importinfo.php, (8) import.php, (9) examplefile.php, (10) clearinfo.php, (11) clear.php, (12) aboutinfo.php, (13) about.php, and other unspecified files.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/35621

Source: cve@mitre.org

http://osvdb.org/35622

Source: cve@mitre.org

http://osvdb.org/35623

Source: cve@mitre.org

http://osvdb.org/35624

Source: cve@mitre.org

http://osvdb.org/35625

Source: cve@mitre.org

http://osvdb.org/35626

Source: cve@mitre.org

http://osvdb.org/35627

Source: cve@mitre.org

http://osvdb.org/35628

Source: cve@mitre.org

http://osvdb.org/35629

Source: cve@mitre.org

http://osvdb.org/35630

Source: cve@mitre.org

http://osvdb.org/35631

Source: cve@mitre.org

http://osvdb.org/35632

Source: cve@mitre.org

http://osvdb.org/35633

Source: cve@mitre.org

http://securityreason.com/securityalert/2624

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/466683/100/0/threaded

Source: cve@mitre.org

http://osvdb.org/35621