News Evolution Include Undefined Variable Command Execution Vulnerability

Bugtraq ID: 6260
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Nov 26 2002 12:00AM
Updated: Nov 26 2002 12:00AM
Credit: Vulnerability discovery credited to "Frog Man" <leseulfrog@hotmail.com>.
Vulnerable: PHP Evolution News Evolution 2.0
PHP Evolution News Evolution 1.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus