Multiple PHP remote file inclusion vulnerabilities in playSMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) apps_path[plug] parameter to plugin/gateway/gnokii/init.php, the (2) apps_path[themes] parameter to plugin/themes/default/init.php, and the (3) apps_path[libs] parameter to lib/function.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-01-09T18:00:00
Updated: 2024-08-07T04:24:17.132Z
Reserved: 2009-01-09T00:00:00
Link: CVE-2009-0103
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-01-09T18:30:03.047
Modified: 2024-11-21T00:59:03.620
Link: CVE-2009-0103
Redhat
No data.