Required CVE Record Information
Description
PHP remote file inclusion vulnerability in get_header.php in VWar 1.5.0 R12 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter. NOTE: this is a different vulnerability than CVE-2006-1503.
References 6 Total
- http://downloads.securityfocus.com/vulnerabilities/exploits/VWar_1.5.0_R12.pl
- osvdb.org: 24480 vdb-entry
- vupen.com: ADV-2006-1228 vdb-entry
- securityfocus.com: 20060402 VWar <= 1.5.0 R12 Remote File Inclusion Exploit mailing-list
- secunia.com: 19524 third-party-advisory
- securityfocus.com: 17358 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- http://downloads.securityfocus.com/vulnerabilities/exploits/VWar_1.5.0_R12.pl x_transferred
- osvdb.org: 24480 vdb-entryx_transferred
- vupen.com: ADV-2006-1228 vdb-entryx_transferred
- securityfocus.com: 20060402 VWar <= 1.5.0 R12 Remote File Inclusion Exploit mailing-listx_transferred
- secunia.com: 19524 third-party-advisoryx_transferred
- securityfocus.com: 17358 vdb-entryx_transferred