CVE-2010-1114

Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) pg parameter to index.php and the (2) path parameter to news/form.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:comscripts:web_server_creator_web_portal:0.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-03-25 17:30

Updated : 2024-02-04 17:54


NVD link : CVE-2010-1114

Mitre link : CVE-2010-1114

CVE.ORG link : CVE-2010-1114


JSON object : View

Products Affected

comscripts

  • web_server_creator_web_portal
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')