RSS   Vulnerabilities for 'Phprealty'   RSS

2008-09-19
 
CVE-2008-4134

CWE-94
 

 
PHP remote file inclusion vulnerability in manager/static/view.php in phpRealty 0.03 and earlier, and possibly other versions before 0.05, allows remote attackers to execute arbitrary PHP code via a URL in the INC parameter.

 
2007-09-12
 
CVE-2007-4834

 

 
Multiple PHP remote file inclusion vulnerabilities in phpRealty 0.02 allow remote attackers to execute arbitrary PHP code via a URL in the MGR parameter to (1) index.php, (2) p_ins.php, and (3) u_ins.php in manager/admin/.

 


Copyright 2024, cxsecurity.com

 

Back to Top