2 matches found
CVE-2005-3796
Direct static code injection vulnerability in adminoptionsmanage.php in AlstraSoft Affiliate Network Pro 7.2 allows attackers to execute arbitrary PHP code via the number parameter. NOTE: it is not clear from the original report whether administrator privileges are required. If not, then this doe...
CVE-2005-3796
CVE-2005-3796 affects AlstraSoft Affiliate Network Pro 7.2. A vulnerability in admin_options_manage.php allows direct static code injection via the number parameter, enabling arbitrary PHP code execution. Root cause: inadequate input handling/validation in the affected PHP file. Impact per public...