CVE-2005-2846

2005-09-0804:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.071 Low

EPSS

Percentile

94.0%

JSON

PHP remote file inclusion vulnerability in lang.php in CMS Made Simple 0.10 and earlier allows remote attackers to execute arbitrary PHP code via the nls[file][vx][vxsfx] parameter.

References

forum.cmsmadesimple.org/index.php/topic%2C1549.0.html

marc.info/?l=bugtraq&m=112552342004406&w=2

secunia.com/advisories/16654/

www.securityfocus.com/bid/14709