CVE-2007-6548 (RunCMS) |
|
| BugsAlert Home > CVE-2007-6548 (RunCMS) | |
|
Multiple direct static code injection vulnerabilities in RunCMS before 1.6.1 allow remote authenticated administrators to inject arbitrary PHP code via the (1) header and (2) footer parameters to modules/system/admin.php in a meta-generator action, (3) the disclaimer parameter to modules/system/admin.php in a disclaimer action, (4) the disclaimer parameter to modules/mydownloads/admin/index.php in a mydownloadsConfigAdmin action, (5) the disclaimer parameter to modules/newbb_plus/admin/forum_... Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6548 Learn more about CVE-2007-6548 (RunCMS) |
|
| Tags: cve-2007-6548 runcms | |
Related Items |
|
|
Sun Solaris "libdevinfo" Local Unauthorized File Access Vulnerability
|
|
|
CVE-2008-1072 (Wireshark)
|
|
|
Debian update for mt-daapd
|
|
|
CVE-2008-4744 (dxshopcart)
|
|
|
Vuln: Debian rancid-util 'getipacctg' Insecure Temporary File Creation Vulnerability
|
|
|
CVE-2008-4890 (4_professional)
|
|
|
Faad2 "decodeMP4file()" Buffer Overflow Vulnerability
|
|
