CVE-2008-2885

PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CLASSES_ROOT parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:odars:odars:1.0.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-06-27 18:41

Updated : 2024-02-04 17:33


NVD link : CVE-2008-2885

Mitre link : CVE-2008-2885

CVE.ORG link : CVE-2008-2885


JSON object : View

Products Affected

odars

  • odars
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')