CVE-2007-3358
SerWeb <0.9.6 - RCE
Title source: llmDescription
PHP remote file inclusion vulnerability in html/load_lang.php in SerWeb 0.9.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _SERWEB[serwebdir] parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Kw3[R]Ln · perlwebappsphp
https://www.exploit-db.com/exploits/4089
References (6)
Scores
EPSS
0.8599
EPSS Percentile
99.4%
Details
Status
published
Products (1)
iptel/serweb
< 0.9.6
Published
Jun 22, 2007
Tracked Since
Feb 18, 2026