Description

Multiple PHP remote file inclusion vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to execute arbitrary PHP code via unknown vectors.

Remediation

References

CVE-2005-1377

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5264)

WordPress Plugin Daily Inspiration Generator Open Redirect (2.0)

Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2020-8185)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-29179)

Severity

High

Classification

CVE-2005-1377

Tags

Missing Update Known Vulnerabilities