CVE-2010-4988

2011-11-0122:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.2%

JSON

PHP remote file inclusion vulnerability in mod_chatting/themes/default/header.php in Family Connections Who is Chatting 2.2.3 allows remote attackers to execute arbitrary PHP code via a URL in the TMPL[path] parameter.

References

www.exploit-db.com/exploits/14186

www.securityfocus.com/bid/41346

www.vupen.com/english/advisories/2010/1687

exchange.xforce.ibmcloud.com/vulnerabilities/60057