Required CVE Record Information
Description
Multiple PHP remote file inclusion vulnerabilities in B2 Weblog and News Publishing Tool 0.6.1 allow remote attackers to execute arbitrary PHP code via a URL in the b2inc parameter to (1) b2archives.php, (2) b2categories.php, or (3) b2mail.php. NOTE: this may overlap CVE-2002-1466.
References 7 Total
- osvdb.org: 35550 vdb-entry
- securityfocus.com: 20070425 B2 Weblog and News Publishing Tool v0.6.1 >> RFI mailing-list
- securityfocus.com: 23659 vdb-entry
- securityreason.com: 2632 third-party-advisory
- osvdb.org: 35551 vdb-entry
- osvdb.org: 35552 vdb-entry
- exchange.xforce.ibmcloud.com: b2-b2inc-file-include(33884) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- osvdb.org: 35550 vdb-entryx_transferred
- securityfocus.com: 20070425 B2 Weblog and News Publishing Tool v0.6.1 >> RFI mailing-listx_transferred
- securityfocus.com: 23659 vdb-entryx_transferred
- securityreason.com: 2632 third-party-advisoryx_transferred
- osvdb.org: 35551 vdb-entryx_transferred
- osvdb.org: 35552 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: b2-b2inc-file-include(33884) vdb-entryx_transferred