Vulnerabilities for Kr-php web content server (...) - CXSECURITY.COM

Vulnerabilities for 'Kr-php web content server'

2009-12-07

CVE-2009-4223

CWE-94

PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web 1.1b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.

Copyright 2024, cxsecurity.com