Remote file inclusion

2008-07-1518:41:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

0.085 Low

EPSS

Percentile

94.5%

JSON

PHP remote file inclusion vulnerability in ktmlpro/includes/ktedit/toolbar.php in gapicms 9.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the dirDepth parameter.

CPENameOperatorVersion
gapicmseq9.0.2

CPE	Name	Operator	Version
	gapicms	eq	9.0.2

References

securityreason.com/securityalert/3998

www.securityfocus.com/archive/1/494138/100/0/threaded

www.securityfocus.com/bid/30173

www.vupen.com/english/advisories/2008/2059/references

exchange.xforce.ibmcloud.com/vulnerabilities/43712

www.exploit-db.com/exploits/6036