PHP remote file inclusion vulnerability in index.php in Achievo 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter.
2007-05-17T19:30:00.000
2025-04-09T00:30:58.490
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | a_ux | * | No |
| Operating System | apple | mac_os_x | * | No |
| Operating System | hp | hp-ux | * | No |
| Operating System | hp | tru64 | * | No |
| Operating System | ibm | os2 | * | No |
| Operating System | linux | linux_kernel | * | No |
| Operating System | microsoft | windows_2000 | * | No |
| Operating System | microsoft | windows_2003_server | * | No |
| Operating System | microsoft | windows_95 | * | No |
| Operating System | microsoft | windows_98 | * | No |
| Operating System | microsoft | windows_98se | * | No |
| Operating System | microsoft | windows_me | * | No |
| Operating System | microsoft | windows_nt | 4.0 | No |
| Operating System | microsoft | windows_xp | * | No |
| Operating System | santa_cruz_operation | sco_unix | * | No |
| Operating System | sun | solaris | * | No |
| Operating System | windriver | bsdos | * | No |
| Application | achievo | achievo | 1.1.0 | Yes |