RSS   Vulnerabilities for 'Aroundme'   RSS

2009-12-10
 
CVE-2009-4264

CWE-94
 

 
PHP remote file inclusion vulnerability in components/core/connect.php in AROUNDMe 1.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the language_path parameter.

 
2006-10-26
 
CVE-2006-5533

CWE-Other
 

 
Multiple PHP remote file inclusion vulnerabilities in AROUNDMe 0.6.9, and possibly earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the templatePath parameter in template/barnraiser_01/pol_view.tpl.php and other unspecified PHP scripts, a different vector than CVE-2006-5401.

 
2006-10-18
 
CVE-2006-5401

 

 
PHP remote file inclusion vulnerability in template/barnraiser_01/p_new_password.tpl.php in AROUNDMe 0.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the templatePath parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top