2 matches found
CVE-2008-0138
Summary : CVE-2008-0138 concerns the XoopsGallery mod_gallery module for XOOPS, specifically the init_basic.php script. When register_globals is disabled, the GALLERY_BASEDIR parameter can be controlled by a remote attacker to cause a remote file inclusion, allowing execution of arbitrary PHP cod...
CVE-2008-0138
PHP remote file inclusion vulnerability in xoopsgallery/initbasic.php in the modgallery module for XOOPS, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the GALLERYBASEDIR parameter...