RSS   Vulnerabilities for 'Tell a friend script'   RSS

2005-05-02
 
CVE-2005-0679

CWE-94
 

 
PHP remote file inclusion vulnerability in tell_a_friend.inc.php for Tell A Friend Script 2.7 before 20050305 allows remote attackers to execute arbitrary PHP code by modifying the script_root parameter to reference a URL on a remote web server that contains the code. NOTE: it was later reported that 2.4 is also affected.

 

 >>> Vendor: Stadtaus 4 Products
Form mail script
Tell a friend script
Guestbook script
Download center lite


Copyright 2024, cxsecurity.com

 

Back to Top