2 matches found
CVE-2005-0800
PHP remote file inclusion vulnerability in install.php in mcNews 1.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the l parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2005-0720...
CVE-2005-0800
CVE-2005-0800 describes a PHP remote file inclusion vulnerability in mcNews 1.3 and earlier. The flaw exists in install.php where the l parameter can be modified to reference a URL on a remote server containing PHP code, allowing an attacker to execute arbitrary PHP. The issue is triggered throug...