2 matches found
CVE-2010-1061
The CVE-2010-1061 entry concerns Phpkobo Short URL 1.01. Affected component: the PHP application’s files, specifically url/app/common.inc.php and codelib/cfg/common.inc.php. Root cause: directory traversal via the LANG_CODE parameter when magic_quotes_gpc is disabled. Impact: remote attackers cou...
CVE-2010-1060
CVE-2010-1060 is a directory traversal vulnerability in Phpkobo Short URL 1.01 (staff/app/common.inc.php). When magic_quotes_gpc is disabled, an attacker can use ".." in the LANG_CODE parameter to include and execute arbitrary local files. The NVD entry assigns a CVSS v2 base score of 6.8 (MEDIUM...