Required CVE Record Information
Description
Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote attackers to overwrite configuration variables via URL parameters, which are evaluated as PHP variable variables.
References 5 Total
- securityfocus.com: 19303 vdb-entry
- securityfocus.com: 20060802 Secunia Research: Jetbox Multiple Vulnerabilities mailing-list
- securityreason.com: 1339 third-party-advisory
- http://secunia.com/secunia_research/2006-57/advisory/
- secunia.com: 20889 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securityfocus.com: 19303 vdb-entryx_transferred
- securityfocus.com: 20060802 Secunia Research: Jetbox Multiple Vulnerabilities mailing-listx_transferred
- securityreason.com: 1339 third-party-advisoryx_transferred
- http://secunia.com/secunia_research/2006-57/advisory/ x_transferred
- secunia.com: 20889 third-party-advisoryx_transferred