NuytsTech Security

CVE-2004-2010

by ·

PHP remote file inclusion vulnerability in index.php in phpShop 0.7.1 and earlier allows remote attackers to execute arbitrary PHP code by modifying the base_dir parameter to reference a URL on a remote web server that contains phpshop.cfg.

Date published : 2005-05-10

http://www.securityfocus.com/bid/10313

http://marc.info/?l=bugtraq&m=108420702317870&w=2

Tags: