CVE-2009-4319

2009-12-14T21:17:00
ID CVE-2009-4319
Type cve
Reporter cve@mitre.org
Modified 2009-12-15T05:00:00

Description

PHP remote file inclusion vulnerability in js/bbcodepress/bbcode-form.php in eoCMS 0.9.03 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the BBCODE_path parameter.