Required CVE Record Information
Description
PHP remote file inclusion vulnerability in addcode.php in HIOX Star Rating System Script (HSRS) 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the hm parameter.
References 6 Total
- securityfocus.com: 21280 vdb-entry
- securityfocus.com: 20080730 HIOX Star Rating System 1.0 Remote File Inclusion Vulnerability mailing-list
- secunia.com: 23078 third-party-advisory
- vupen.com: ADV-2006-4689 vdb-entry
- exchange.xforce.ibmcloud.com: hsrs-addcode-file-include(30527) vdb-entry
- exploit-db.com: 2838 exploit
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- securityfocus.com: 21280 vdb-entryx_transferred
- securityfocus.com: 20080730 HIOX Star Rating System 1.0 Remote File Inclusion Vulnerability mailing-listx_transferred
- secunia.com: 23078 third-party-advisoryx_transferred
- vupen.com: ADV-2006-4689 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: hsrs-addcode-file-include(30527) vdb-entryx_transferred
- exploit-db.com: 2838 exploitx_transferred