Описание
PHP remote file inclusion vulnerability in Redaxo 3.0 up to 3.2 allows remote attackers to execute arbitrary PHP code via a URL in the REX[INCLUDE_PATH] parameter to image_resize/pages/index.inc.php.
PHP remote file inclusion vulnerability in Redaxo 3.0 up to 3.2 allows remote attackers to execute arbitrary PHP code via a URL in the REX[INCLUDE_PATH] parameter to image_resize/pages/index.inc.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2845
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26887
- https://www.exploit-db.com/exploits/1861
- http://secunia.com/advisories/20395
- http://securityreason.com/securityalert/1043
- http://securitytracker.com/id?1016213
- http://www.securityfocus.com/archive/1/435733/100/0/threaded
- http://www.securityfocus.com/bid/18229
- http://www.vupen.com/english/advisories/2006/2109
EPSS
Процентиль: 94%
0.12648
Средний
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
PHP remote file inclusion vulnerability in Redaxo 3.0 up to 3.2 allows remote attackers to execute arbitrary PHP code via a URL in the REX[INCLUDE_PATH] parameter to image_resize/pages/index.inc.php.
EPSS
Процентиль: 94%
0.12648
Средний