CVE Vulnerabilities

CVE-2005-2319

Published: Jul 19, 2005 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

PHP remote file include vulnerability in Yawp library 1.0.6 and earlier, as used in YaWiki and possibly other products, allows remote attackers to include arbitrary files via the _Yawp[conf_path] parameter.

Affected Software

Name Vendor Start Version End Version
Yawp Yawp 1.0.0 1.0.0
Yawp Yawp 1.0.1 1.0.1
Yawp Yawp 1.0.2 1.0.2
Yawp Yawp 1.0.3 1.0.3
Yawp Yawp 1.0.4 1.0.4
Yawp Yawp 1.0.5 1.0.5
Yawp Yawp 1.0.6 1.0.6

References