3 matches found
CVE-2008-6807
PHP remote file inclusion vulnerability in ListRecords.php in osprey 1.0a4.1 allows remote attackers to execute arbitrary PHP code via a URL in the xmldir parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: the libdir...
CVE-2008-6807
PHP remote file inclusion vulnerability in ListRecords.php in osprey 1.0a4.1 allows remote attackers to execute arbitrary PHP code via a URL in the xmldir parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: the libdir...
CVE-2008-6807
The CVE-2008-6807 entry relates to a PHP remote file inclusion vulnerability in ListRecords.php for osprey 1.0a4.1, exploitable by supplying a URL in the xml_dir parameter to execute arbitrary PHP code on the remote server. The vulnerability’s root cause is a PRomote RFI via user-controlled URL i...