Description

PHP remote file inclusion vulnerability in learnPath/include/scormExport.inc.php in Claroline 1.7.4 and earlier allows remote attackers to execute arbitrary PHP code via the includePath parameter.

Remediation

References

CVE-2006-1596

Related Vulnerabilities

TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-19850)

Oracle Database Server CVE-2020-2515 Vulnerability (CVE-2020-2515)

WordPress Plugin My WordPress Login Logo Multiple Unspecified Vulnerabilities (2.1)

WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.3.0)

WordPress Plugin Paytium:Mollie payment forms & donations Cross-Site Scripting (3.1.1)

Severity

High

Classification

CVE-2006-1596

Tags

Missing Update Known Vulnerabilities