2 matches found
CVE-2005-3910
The CVE-2005-3910 entry affects Post Affiliate Pro (merchants/index.php) in version 2.0.4 and earlier. When magic_quotes_gpc is disabled, remote attackers can trigger a local file inclusion via the md parameter, likely due to a directory traversal vulnerability. Documented impact is arbitrary loc...
CVE-2005-3910
merchants/index.php in Post Affiliate Pro 2.0.4 and earlier, with magicquotesgpc disabled, allows remote attackers to include arbitrary local files via the md parameter, possibly due to a directory traversal vulnerability...