Описание
phgstats.inc.php in phgstats before 0.5.1, if register_globals is enabled, allows remote attackers to include arbitrary files and execute arbitrary PHP code by modifying the PHGDIR variable.
phgstats.inc.php in phgstats before 0.5.1, if register_globals is enabled, allows remote attackers to include arbitrary files and execute arbitrary PHP code by modifying the PHGDIR variable.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0164
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24062
- http://secunia.com/advisories/18346
- http://sourceforge.net/project/shownotes.php?release_id=384232
- http://www.osvdb.org/22302
- http://www.securityfocus.com/bid/17469
- http://www.vupen.com/english/advisories/2006/0123
EPSS
Процентиль: 92%
0.08939
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
phgstats.inc.php in phgstats before 0.5.1, if register_globals is enabled, allows remote attackers to include arbitrary files and execute arbitrary PHP code by modifying the PHGDIR variable.
EPSS
Процентиль: 92%
0.08939
Низкий