Описание
Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nom_blog parameter, which is injected into include/variables.php.
Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nom_blog parameter, which is injected into include/variables.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29217
- http://acid-root.new.fr/poc/12060927.txt
- http://secunia.com/advisories/22163
- http://securityreason.com/securityalert/1653
- http://www.securityfocus.com/archive/1/447167/100/0/threaded
- http://www.securityfocus.com/bid/20235
EPSS
Процентиль: 90%
0.05495
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nom_blog parameter, which is injected into include/variables.php.
EPSS
Процентиль: 90%
0.05495
Низкий