AI Score
Confidence
High
EPSS
Percentile
84.2%
Mafia Blog .4 BETA does not properly protect the admin directory, which allows remote attackers to execute arbitrary PHP code by using writeinfo.php to inject the code into info.php.
chrisnowak.org/projects/mafia/
marc.info/?l=bugtraq&m=111359511826958&w=2
www.securityfocus.com/bid/13194