3 matches found
CVE-2006-4448
Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGBASEPATH parameter in a admin/autoprompter.php and b includes/common.inc.php, and the 2 CONFIGLANGUAGECPATH parameter ...
interact <= 2.2 (CONFIG[BASE_PATH]) Remote File Include Vulnerability
/ + + - - - Romanian Electronic Network Security Lab Team ThE Best Romanian Hacking Team - - + + + - Cce-interact = 2.2.0 CONFIGBASEPATH Remote File Include Vulnerability + + + - Script name: Interact - Online Learning and Collaboration System v. 2.2.0 - Script site:...
Interact 2.2 - 'CONFIG[base_path]' Remote File Inclusion
/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - Cce-interact admin/autoprompter.php line 33-38: .... requireonce$CONFIG'BASEPATH'.'/modules/forum/autoprompt/prompt.inc.php'; requireonce$CONFIG'LANGUAGECPATH'.'/forumstrings.inc.php'; $rs = $CONN-Execute"SELECT $CONFIG'DBPREFIX'posts.postke...