Описание
PHP remote file inclusion vulnerability in config.php in PSYWERKS PUMA 1.0 RC2 allows remote attackers to execute arbitrary PHP code via a URL in the fpath parameter.
PHP remote file inclusion vulnerability in config.php in PSYWERKS PUMA 1.0 RC2 allows remote attackers to execute arbitrary PHP code via a URL in the fpath parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-4713
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28837
- https://www.exploit-db.com/exploits/2340
- http://securityreason.com/securityalert/1557
- http://www.bb-pcsecurity.de/Websecurity/415/org/PUMA_1.0_RC_2_%28config.php%29_R%20FI.htm
- http://www.bb-pcsecurity.de/Websecurity/415/org/PUMA_1.0_RC_2_(config.php)_R%20FI.htm
- http://www.securityfocus.com/archive/1/445723/100/0/threaded
- http://www.securityfocus.com/bid/19940
- http://www.vupen.com/english/advisories/2006/3545
EPSS
Процентиль: 94%
0.1218
Средний
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
PHP remote file inclusion vulnerability in config.php in PSYWERKS PUMA 1.0 RC2 allows remote attackers to execute arbitrary PHP code via a URL in the fpath parameter.
EPSS
Процентиль: 94%
0.1218
Средний