2 matches found
CVE-2006-2730
PHP remote file inclusion vulnerability in admin/libactionstep.php in Hot Open Tickets HOT 11012004ver2f, when registerglobals is enabled, allows remote attackers to include arbitrary files via the GLOBALSCLASSPATH parameter. NOTE: this issue might be resultant from a global overwrite vulnerabili...
CVE-2006-2730
The CVE-2006-2730 entry concerns a PHP remote file inclusion vulnerability in Hot Open Tickets (HOT) 11012004_ver2f. When register_globals is enabled, an attacker could abuse the GLOBALS[CLASS_PATH] parameter in admin/lib_action_step.php to include arbitrary files. The vulnerability aligns with a...