Security Advisory

CVE-2008-5167

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-11-19 18:00:00

Last updated 2024-08-07 10:40:17

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the gConf[dir][layouts] parameter.

← Browse all CVEs View on cve.org ↗