AI Score
Confidence
High
EPSS
Percentile
94.6%
phgstats.inc.php in phgstats before 0.5.1, if register_globals is enabled, allows remote attackers to include arbitrary files and execute arbitrary PHP code by modifying the PHGDIR variable.
secunia.com/advisories/18346
sourceforge.net/project/shownotes.php?release_id=384232
www.osvdb.org/22302
www.securityfocus.com/bid/17469
www.vupen.com/english/advisories/2006/0123
exchange.xforce.ibmcloud.com/vulnerabilities/24062