CVE Vulnerabilities

CVE-2005-2319

Published: Jul 19, 2005 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

PHP remote file include vulnerability in Yawp library 1.0.6 and earlier, as used in YaWiki and possibly other products, allows remote attackers to include arbitrary files via the _Yawp[conf_path] parameter.

Affected Software

Name Vendor Start Version End Version
Yawp Yawp 1.0.0 (including) 1.0.0 (including)
Yawp Yawp 1.0.1 (including) 1.0.1 (including)
Yawp Yawp 1.0.2 (including) 1.0.2 (including)
Yawp Yawp 1.0.3 (including) 1.0.3 (including)
Yawp Yawp 1.0.4 (including) 1.0.4 (including)
Yawp Yawp 1.0.5 (including) 1.0.5 (including)
Yawp Yawp 1.0.6 (including) 1.0.6 (including)

References