CVE-2010-1978

2010-05-19T16:00:01
ID CVE-2010-1978
Type cve
Reporter NVD
Modified 2017-08-16T21:32:33

Description

PHP remote file inclusion vulnerability in default_theme.php in FreePHPBlogSoftware 1.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpincdir parameter. NOTE: some of these details are obtained from third party information.