Lucene search
HistoryMay 06, 2010 - 6:30 p.m.
CVE-2010-1737
php
remote file inclusion
vulnerability
gallo 0.1.0
nvd
7.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.024 Low
EPSS
Percentile
89.8%
PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the config[gfwroot] parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| carlos_eduardo_sotelo_pinto:0.1.0 | carlos eduardo sotelo pinto 0.1.0 | eq | * |
Related
openvas
openvas
Gallo <= 0.1.0 RFI Vulnerability
2010-05-06 00:00:00
Gallo 'gfw_smarty.php' Remote File Include Vulnerability
2010-05-06 00:00:00
prion
prion
Remote file inclusion
2010-05-06 18:30:00
7.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.024 Low
EPSS
Percentile
89.8%
Related for CVE-2010-1737