Vulnerability CVE-2010-1299

Vulnerability CVE-2010-1299

Published: 2010-04-07 Modified: 2012-02-13

Description:

	Topic	Author	Date
Med.	DynPG CMS v4.1.0 Multiple Remote File Inclusion Vulnerability	eidelweiss	10.04.2010

Type:

(Improper Control of Generation of Code ('Code Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
5.1/10	6.4/10	4.9/10

Affected software
Dynpg -> Dynpg cms

http://packetstormsecurity.org/1004-exploits/dynpgcms-rfi.txt

http://www.dynpg.org/cms-freeware.php?t=DynPG-Update+4.1.1+noch+einfacher+und+sicherer!&read_article=169

http://www.exploit-db.com/exploits/11994

http://www.securityfocus.com/archive/1/510477/100/0/threaded

http://www.securityfocus.com/bid/39168

https://exchange.xforce.ibmcloud.com/vulnerabilities/57490

https://exchange.xforce.ibmcloud.com/vulnerabilities/57491