cve/2007/CVE-2007-5271.md

CVE-2007-5271

Description

Multiple PHP remote file inclusion vulnerabilities in Trionic Cite CMS 1.2 rev9 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the bField[bf_data] parameter to (1) interface/editors/-custom.php or (2) interface/editors/custom.php.

POC

Reference

• https://www.exploit-db.com/exploits/4485

Github

No PoCs found on GitHub currently.