Description
PHP remote file inclusion vulnerability in templates/tmpl_dfl/scripts/index.php in BoonEx Dolphin 5.2 allows remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter. NOTE: it is possible that this issue overlaps CVE-2006-4189.
Remediation
References
Related Vulnerabilities
IBMHttpServer Other Vulnerability (CVE-2004-0263)
WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-6306)
Restlet Framework XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2013-4221)
Jboss EAP Reachable Assertion Vulnerability (CVE-2020-25710)