CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-2769
https://notcve.org/view.php?id=CVE-2008-2769
PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter. Vulnerabilidad de inclusión remota de archivo en PHP en authentication/smf/smf.functions.php de Simple Machines phpRaider 1.0.6 y 1.0.7, permite a atacantes remotos ejecutar código PHP de su elección mediante una URL en el parámetro pConfig_auth[smf_path]. • http://forums.phpraider.com/showthread.php?t=1087#v1_0_7b_-_May_29__2008 http://securityreason.com/securityalert/3947 http://www.securityfocus.com/archive/1/493275/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/42996 • CWE-94: Improper Control of Generation of Code ('Code Injection') •