RSS   Vulnerabilities for '29o3 cms'   RSS

2010-05-12
 
CVE-2010-1922

CWE-94
 

 
Multiple PHP remote file inclusion vulnerabilities in 29o3 CMS 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the LibDir parameter to (1) lib/page/pageDescriptionObject.php, and (2) layoutHeaderFuncs.php, (3) layoutManager.php, and (4) layoutParser.php in lib/layout/.

 


Copyright 2024, cxsecurity.com

 

Back to Top