Security Advisory

CVE-2003-1412

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-10-20 10:00:00

Last updated 2024-08-08 02:28:03

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote attackers to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) 4mailinglists/index.php, (5) 3departaments/index.php, and (6) 2groupd/index.php in 2administration/; or (7) the base parameter to include/help.php.

← Browse all CVEs View on cve.org ↗