Описание
PHP remote file inclusion vulnerability in hsList.php in WoWRoster (aka World of Warcraft Roster) 1.5.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the subdir parameter.
PHP remote file inclusion vulnerability in hsList.php in WoWRoster (aka World of Warcraft Roster) 1.5.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the subdir parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-3997
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28101
- http://secunia.com/advisories/21299
- http://securityreason.com/securityalert/1329
- http://securitytracker.com/id?1016631
- http://www.securityfocus.com/archive/1/441820/100/0/threaded
- http://www.securityfocus.com/bid/19269
- http://www.wowroster.net/Forums/viewtopic/t=333.html
EPSS
Процентиль: 90%
0.05797
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
PHP remote file inclusion vulnerability in hsList.php in WoWRoster (aka World of Warcraft Roster) 1.5.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the subdir parameter.
EPSS
Процентиль: 90%
0.05797
Низкий