Required CVE Record Information
Description
PHP remote file inclusion vulnerability in index.php in SkaDate Dating allows remote attackers to execute arbitrary PHP code via a URL in the language_id parameter. NOTE: this can also be leveraged to include and execute arbitrary local files via directory traversal sequences.
References 6 Total
- exchange.xforce.ibmcloud.com: skadate-languageid-file-include(57249) vdb-entry
- osvdb.org: 56543 vdb-entry
- securityfocus.com: 35813 vdb-entry
- exchange.xforce.ibmcloud.com: skadate-index-file-include(52003) vdb-entry
- secunia.com: 35997 third-party-advisory
- exploit-db.com: 9260 exploit
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- exchange.xforce.ibmcloud.com: skadate-languageid-file-include(57249) vdb-entryx_transferred
- osvdb.org: 56543 vdb-entryx_transferred
- securityfocus.com: 35813 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: skadate-index-file-include(52003) vdb-entryx_transferred
- secunia.com: 35997 third-party-advisoryx_transferred
- exploit-db.com: 9260 exploitx_transferred