PHP remote file inclusion vulnerability in ains_main.php in Johannes Gijsbers (aka Taradino) Ad Fundum Integratable News Script (AINS) 0.02b allows remote attackers to execute arbitrary PHP code via a URL in the ains_path parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ad_fundum_integratable_news_script | Johannes_gijsbers | 0.02b (including) | 0.02b (including) |
References
- http://osvdb.org/36620
- http://www.securityfocus.com/bid/22259
- http://www.vupen.com/english/advisories/2007/0384
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31850
- https://www.exploit-db.com/exploits/3202
- http://osvdb.org/36620
- http://www.securityfocus.com/bid/22259
- http://www.vupen.com/english/advisories/2007/0384
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31850
- https://www.exploit-db.com/exploits/3202