|
|
CVE Reference: CVE-2008-2638 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-2638 |
|
|
Description: Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and earlier allows remote attackers to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/42854 SAID Secunia Advisory: SA30146 MILW0RM http://www.milw0rm.com/exploits/5736 CONFIRM http://1scripts.net/php-scripts/index.php?p=16 |
|
| Return to the previous page. |
