2 matches found
CVE-2010-1978
PHP remote file inclusion vulnerability in defaulttheme.php in FreePHPBlogSoftware 1.0, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpincdir parameter. NOTE: some of these details are obtained from third party information...
CVE-2010-1978
CVE-2010-1978 describes a remote file inclusion (RFI) in FreePHPBlogSoftware 1.0. The issue exists in default_theme.php when register_globals is enabled, allowing a remote attacker to cause the application to include a URL specified via the phpincdir parameter, potentially leading to arbitrary PH...