Description

PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.

Remediation

References

CVE-2006-5256

Related Vulnerabilities

WordPress Plugin My Link Order Cross-Site Scripting (4.3)

Undertow CVE-2022-2764 Vulnerability (CVE-2022-2764)

WordPress Plugin WP Reactions Lite Cross-Site Scripting (1.3.5)

Squid Improper Input Validation Vulnerability (CVE-2014-3609)

Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4614)

Severity

High

Classification

CVE-2006-5256

Tags

Missing Update Known Vulnerabilities