3 matches found
CVE-2011-5130
CVE-2011-5130 affects Family Connections CMS (FCMS) versions 2.5.0–2.7.1. The issue lives in dev/less.php and arises when register_globals is on, allowing remote attackers to execute arbitrary commands via shell metacharacters in argv[1]. Root cause reported as insecure use of system(), enabling ...
Family Connections less.php Remote Command Execution
This module exploits an arbitrary command execution vulnerability in Family Connections 2.7.1. It's in the dev/less.php script and is due to an insecure use of system. Authentication isn't required to exploit the vulnerability but registerglobals must be set to On. This module requires Metasploit...
CVE-2011-5130
creationtimestamp| type| source ---|---|--- 2011-12-04 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18198 2011-12-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18208 2018-05-29 15:50:33+00:00| seen|...