Security Advisory

CVE-2008-1989

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-04-27 21:00:00

Last updated 2024-08-07 08:41:00

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.

← Browse all CVEs View on cve.org ↗