Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-1513. PoCs published by the_day.
AI-analyzed exploit summary This is a writeup detailing a remote file inclusion vulnerability in Company WebSite Builder PRO 1.9.8. The vulnerability arises from improper verification of the $INCLUDE_PATH parameter in comanda.php, allowing arbitrary PHP code execution via external file inclusion.
Description
PHP remote file inclusion vulnerability in comanda.php in GraFX Company WebSite Builder (CWB) PRO 1.9.8, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the INCLUDE_PATH parameter.
Exploits (1)
This is a writeup detailing a remote file inclusion vulnerability in Company WebSite Builder PRO 1.9.8. The vulnerability arises from improper verification of the $INCLUDE_PATH parameter in comanda.php, allowing arbitrary PHP code execution via external file inclusion.