2 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in viewfunc.php in Member Area System MAS 1.7 and possibly others allows remote attackers to execute arbitrary PHP code via a URL in the i parameter. NOTE: a second vector might exist via the l parameter. NOTE: as of 20080118, the vendor has disputed the se...
CVE-2008-0289
CVE-2008-0289 describes a PHP remote file inclusion in the Member Area System (MAS) 1.7 (and possibly others), exploitable via a URL parameter (i) to execute arbitrary PHP code, with a secondary vector potentially via the l parameter. This vulnerability’s root cause is unclear from the provided t...