CVE Vulnerabilities

CVE-2001-1049

Published: Oct 02, 2001 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Affected Software

Name Vendor Start Version End Version
Phorecast Paul_m._jones * 0.40 (including)

References