RSS   Vulnerabilities for '0.1.0'   RSS

2010-05-06
 
CVE-2010-1737

CWE-94
 

 
PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the config[gfwroot] parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top