CVE-2007-0171

Name of the Vulnerable Software and Affected Versions AllMyLinks versions 0.5.0 and earlier

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the AML opensite parameter in the index.php file. This enables attackers to potentially gain control over the system by injecting malicious PHP code.

Recommendations For AllMyLinks versions 0.5.0 and earlier, consider disabling the AML opensite parameter in the index.php file until a patch is available to prevent remote file inclusion attacks. Restrict access to the index.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.