3 matches found
CVE-2004-1592
The CVE-2004-1592 entry concerns ocPortal (index.php) remote file inclusion. Affected software is ocPortal 1.0.3 and earlier; the vulnerability arises from a flaw in the req_path parameter, which can be manipulated to reference a URL on a remote server containing a malicious funcs.php, enabling r...
CVE-2004-1592
PHP remote file inclusion vulnerability in index.php in ocPortal 1.0.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the reqpath parameter to reference a URL on a remote web server that contains a malicious funcs.php script...
ocPortal index.php req_path Parameter Remote File Inclusion
The remote host is running ocPortal, a content management system written in PHP. There is a bug in the remote version of this software which may allow an attacker to execute arbitrary commands on the remote host by using a file inclusion bug in the file 'index.php'. An attacker may execute...