2 matches found
CVE-2004-0132
Multiple PHP remote file inclusion vulnerabilities in ezContents 2.0.2 and earlier allow remote attackers to execute arbitrary PHP code from a remote web server, as demonstrated using 1 the GLOBALSrootdp parameter to db.php, or 2 the GLOBALSlanguagehome parameter to archivednews.php, and a...
CVE-2004-0132
CVE-2004-0132 affects ezContents 2.0.2 and earlier and is a PHP remote file inclusion vulnerability. Exploitation via remote PHP inclusion occurs through GLOBALS[rootdp] in db.php or GLOBALS[language_home] in archivednews.php with a malicious lang_admin.php, allowing an attacker to execute arbitr...