NuytsTech Security

CVE-2005-3554

by ·

Multiple eval injection vulnerabilities in the help function in PHPKIT 1.6.1 R2 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary code on the server via unknown attack vectors involving uninitialized variables.

Date published : 2005-11-16

http://www.securityfocus.com/bid/15354

http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00110.html

Tags: