Php121: >> Php121 Instant Messenger >> 2.2 Security Vulnerabilities
PHP file inclusion vulnerability in php121db.php in PHP121 Instant Messenger 2.2 allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the php121dir parameter, which is accessed by the file_exists function.
CVSS Score
6.8
EPSS Score
0.051
Published
2007-04-10