Security Advisory

CVE-2005-0828

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-03-22 05:00:00

Last updated 2024-08-07 21:28:28

Assigner mitre

State PUBLISHED

Description

highlight.php in (1) RUNCMS 1.1A, (2) CIAMOS 0.9.2 RC1, (3) e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allows remote attackers to read arbitrary PHP files by specifying the pathname in the file parameter, as demonstrated by reading database configuration information from mainfile.php.

← Browse all CVEs View on cve.org ↗