CVE-2004-1419

2004-12-31T05:00:00
ID CVE-2004-1419
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:31:00

Description

PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers to execute arbitrary PHP code by modifying the (1) _zb_path parameter to outlogin.php or (2) dir parameter to write.php to reference a URL on a remote web server that contains the code. requires that register_globals be enabled