PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CLASSES_ROOT parameter.
References
Configurations
History
No history.
Information
Published : 2008-06-27 18:41
Updated : 2024-02-04 17:33
NVD link : CVE-2008-2885
Mitre link : CVE-2008-2885
CVE.ORG link : CVE-2008-2885
JSON object : View
Products Affected
odars
- odars
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')