PhpCDB 'lang_global' Parameter Multiple Local File Include Vulnerabilities Network Vulnerability

Summary

PhpCDB is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow the attacker to compromise the application and the computer other attacks are also possible. PhpCDB 1.0 is vulnerable other versions may also be affected.

References

http://sourceforge.net/projects/phpcdb/

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-1537

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
4Images <= 1.7.1 Directory Traversal Vulnerability
Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability
Apache Axis2 Document Type Declaration Processing Security Vulnerability
Apache Struts ClassLoader Manipulation Vulnerabilities

Take action and discover your vulnerabilities