Description

PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.

Remediation

References

CVE-2006-5256

Related Vulnerabilities

Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)

PleskLin Other Vulnerability (CVE-2013-0133)

Apache 2.x version older than 2.0.49

WordPress Plugin Elementor Addon Elements Cross-Site Request Forgery (1.11.7)

WordPress Plugin DSubscribers SQL Injection (1.2)

Severity

High

Classification

CVE-2006-5256

Tags

Missing Update Known Vulnerabilities