CVE-2007-1924

Name of the Vulnerable Software and Affected Versions phpContact (affected versions not specified)

Description The issue concerns remote file inclusion vulnerabilities in phpContact, potentially allowing remote attackers to execute arbitrary PHP code. This is achieved by manipulating the include path parameter in specific PHP files, namely contact business.php and contact person.php. However, it's noted that the include path is initialized to a fixed value before use, which disputes the vulnerability's impact.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.