CVE-2007-1809

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
02/04/2007
Last modified:
09/04/2025

Description

Multiple PHP remote file inclusion vulnerabilities in GraFX Company WebSite Builder (CWB) PRO 1.5 allow remote attackers to execute arbitrary PHP code via a URL in the INCLUDE_PATH parameter to (1) cls_headline_prod.php, (2) cls_listorders.php, or (3) cls_viewpastorders.php in include/, different vectors than CVE-2007-1513.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:grafx_software:company_website_builder:1.5:*:pro:*:*:*:*:*