RSS   Vulnerabilities for 'Vedit'   RSS

2009-09-03
 
CVE-2009-3065

 

 
PHP remote file inclusion vulnerability in editor/edit_htmlarea.php in Ve-EDIT 0.1.4 allows remote attackers to execute arbitrary PHP code via a URL in the highlighter parameter.

 
 
CVE-2009-3064

 

 
Directory traversal vulnerability in debugger/debug_php.php in Ve-EDIT 0.1.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _GET[filename] parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top