OpenDock Easy Gallery sw/lib_comment/lib_comment.php doc_directory Variable Remote File Inclusion

ID OSVDB:29597
Type osvdb
Reporter Dedi Dwianto(
Modified 2006-10-09T07:50:00


Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).


Vendor URL: Security Tracker: 1017021 Secunia Advisory ID:22337 Related OSVDB ID: 29589 Related OSVDB ID: 29591 Related OSVDB ID: 29592 Related OSVDB ID: 29593 Related OSVDB ID: 29595 Related OSVDB ID: 29590 Related OSVDB ID: 29594 Related OSVDB ID: 29596 Other Advisory URL: Mail List Post: Keyword: ECHO_ADV_52$2006 ISS X-Force ID: 29417 Generic Exploit URL: FrSIRT Advisory: ADV-2006-3969 CVE-2006-5241 Bugtraq ID: 20411