2 matches found
CVE-2010-1063
CVE-2010-1063 affects Phpkobo Free Real Estate Contact Form 1.09. The vulnerability is a directory traversal in the LANG_CODE parameter that can cause local file inclusion and remote code execution in three PHP files: codelib/cfg/common.inc.php, form/app/common.inc.php, and staff/app/common.inc.p...
CVE-2010-1062
CVE-2010-1062 affects Phpkobo Free Real Estate Contact Form 1.09; vulnerable component is codelib/sys/common.inc.php. The root cause is a directory traversal flaw that allows remote inclusion/execution of local files via the LANG_CODE parameter when magic_quotes_gpc is disabled. This is described...