RSS   Vulnerabilities for 'Enterprise adressbook'   RSS

2006-08-23
 
CVE-2006-4311

CWE-Other
 

 
PHP remote file inclusion vulnerability in Sonium Enterprise Adressbook 0.2 allows remote attackers to execute arbitrary PHP code via the folder parameter in multiple files in the plugins directory, as demonstrated by plugins/1_Adressbuch/delete.php.

 


Copyright 2019, cxsecurity.com

 

Back to Top