← voltar
CVE-2006-2964

CVE-2006-2964

EPSS 2.6%
Multiple PHP remote file inclusion vulnerabilities in Xtreme Scripts Download Manager (aka Xtreme Downloads) 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the root parameter in (1) download.php, (2) manager.php, (3) admin/scripts/category.php, (4) includes/add_allow.php, (5) admin/index.php, and (6) admin/admin/login.php.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://securityreason.com/securityalert/1072https://exchange.xforce.ibmcloud.com/vulnerabilities/26961http://www.osvdb.org/26643http://www.osvdb.org/26644http://www.osvdb.org/26645http://www.osvdb.org/26646http://www.osvdb.org/26647http://www.osvdb.org/26648http://www.securityfocus.com/archive/1/436104/100/0/threadedhttp://www.securityfocus.com/archive/1/436107/100/0/threaded