CVE Reference: CVE-2005-0380

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2005-0380

Description:
Multiple PHP remote code injection vulnerabilities in (1) print_category.php, (2) login.php, (3) setup.php, (4) ask_password.php, or (5) error.php in ZeroBoard 4.1pl5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the dir parameter to reference a URL on a remote web server that contains the code.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/18893
  http://xforce.iss.net/xforce/xfdb/18892

ST
  1012884

SAID
  Secunia Advisory: SA13769

OSVDB
  12928
  12930
  12931
  12932
  12929

BUGTRAQ
  http://marc.theaimsgroup.com/?l=bugtraq&m=110565373407474&w=2

BID
  12206
  12258


Return to the previous page.