RSS   Vulnerabilities for 'Cmsworks'   RSS

2008-06-26
 
CVE-2008-2877

CWE-94
 

 
PHP remote file inclusion vulnerability in admin/include/lib.module.php in cmsWorks 2.2 RC4, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mod_root parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top