RSS   Vulnerabilities for 'Php hosting directory'   RSS

2008-08-04
 
CVE-2008-3455

CWE-94
 

 
PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the rd parameter.

 
 
CVE-2008-3454

CWE-264
 

 
JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the "adm" cookie value to 1.

 


Copyright 2024, cxsecurity.com

 

Back to Top