1 results (0.010 seconds)
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 4
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 4CVE-2010-1360 – FAQEngine 4.24.00 - Remote File Inclusion
https://notcve.org/view.php?id=CVE-2010-1360
13 Apr 2010 — Multiple PHP remote file inclusion vulnerabilities in FAQEngine 4.24.00 allow remote attackers to execute arbitrary PHP code via a URL in the path_faqe parameter to (1) attachs.php, (2) backup.php, (3) badwords.php, (4) categories.php, (5) changepw.php, (6) colorchooser.php, (7) colorwheel.php, (8) dbfiles.php, (9) diraccess.php, (10) faq.php, (11) index.php, (12) kb.php, and (13) stats.php. Múltiples vulnerabilidades de inclusion remota de fichero PHP en FAQEngine v4.24.00 permite a atacantes remotos ejecu... • https://www.exploit-db.com/exploits/11111 • CWE-94: Improper Control of Generation of Code ('Code Injection') •