← back
CVE-2005-2319

CVE-2005-2319

EPSS 1.4%
PHP remote file include vulnerability in Yawp library 1.0.6 and earlier, as used in YaWiki and possibly other products, allows remote attackers to include arbitrary files via the _Yawp[conf_path] parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://phpyawp.com/yawiki/index.php?page=ChangeLoghttp://secunia.com/advisories/16049http://www.hardened-php.net/advisory-102005.phphttp://www.securityfocus.com/archive/1/404948http://www.securityfocus.com/bid/14237