Vulnerabilities

CVE-2010-1337

by Fred · 09/04/2010

Multiple PHP remote file inclusion vulnerabilities in definitions.php in Lussumo Vanilla 1.1.10, and possibly 0.9.2 and other versions, allow remote attackers to execute arbitrary PHP code via a URL in the (1) include and (2) Configuration[‘LANGUAGE’] parameters.

Date published : 2010-04-09

http://www.securityfocus.com/bid/38889

http://www.packetstormsecurity.com/1003-exploits/vanilla-rfi.txt

Similar

Tags: Cybersecurity Alert