Security Advisory

CVE-2008-2198

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-05-14 17:00:00

Last updated 2024-08-07 08:49:58

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in kmitaadmin/kmitat/htmlcode.php in Kmita Tellfriend 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the file parameter.

← Browse all CVEs View on cve.org ↗