RSS   Vulnerabilities for 'Gnopaste'   RSS

2007-02-08
 
CVE-2007-0862

CWE-94
 

 
** DISPUTED ** PHP remote file inclusion vulnerability in index.php in gnopaste 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via the GNP_REAL_PATH parameter. NOTE: CVE and a third party dispute this issue, since GNP_REAL_PATH is a constant, not a variable.

 
2006-06-06
 
CVE-2006-2834

 

 
PHP remote file inclusion vulnerability in includes/common.php in gnopaste 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top