Security Vulnerabilities, CVEs, Published In 2002 (File inclusion) CVSS score >= 3

CVE-2002-2299

PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows remote attackers to execute arbitrary PHP code via the root_path parameter.
Max CVSS
6.8
EPSS Score
0.57%
Published
2002-12-31
Updated
2017-07-29

CVE-2002-2298

PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.
Max CVSS
6.8
EPSS Score
0.57%
Published
2002-12-31
Updated
2017-07-29

CVE-2002-2297

PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.
Max CVSS
6.8
EPSS Score
0.57%
Published
2002-12-31
Updated
2017-07-29

CVE-2002-2287

PHP remote file inclusion vulnerability in quick_reply.php for phpBB Advanced Quick Reply Hack 1.0.0 and 1.1.0 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter.
Max CVSS
7.5
EPSS Score
2.28%
Published
2002-12-31
Updated
2017-07-29

CVE-2002-2249

PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php.
Max CVSS
7.5
EPSS Score
1.96%
Published
2002-12-31
Updated
2017-07-29

CVE-2002-2217

Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal (WSC-WebPortal) 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) l parameter to customize.php or the (2) pg parameter to index.php.
Max CVSS
7.5
EPSS Score
7.58%
Published
2002-12-31
Updated
2017-10-19

CVE-2002-2123

PHP remote file inclusion vulnerability in publish_xp_docs.php for Gallery 1.3.2 allows remote attackers to inject arbitrary PHP code by specifying a URL to an init.php file in the GALLERY_BASEDIR parameter.
Max CVSS
7.5
EPSS Score
1.22%
Published
2002-12-31
Updated
2017-07-11

CVE-2002-2106

PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php.
Max CVSS
7.5
EPSS Score
5.80%
Published
2002-12-31
Updated
2017-12-19

CVE-2002-2019

PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a. Exchange Project) 2.1 allows remote attackers to execute arbitrary PHP code via the include_file parameter.
Max CVSS
7.5
EPSS Score
1.06%
Published
2002-12-31
Updated
2011-06-29

CVE-2002-1887

PHP remote file inclusion vulnerability in customize.php for phpMyNewsletter 0.6.10 allows remote attackers to execute arbitrary PHP code via the l parameter.
Max CVSS
7.5
EPSS Score
5.80%
Published
2002-12-31
Updated
2008-09-05

CVE-2002-1885

PHP remote file inclusion vulnerability in showhits.php3 for PowerPhlogger (PPhlogger) 2.0.9 through 2.2.2 allows remote attackers to execute arbitrary PHP code via the rel_path parameter.
Max CVSS
7.5
EPSS Score
0.83%
Published
2002-12-31
Updated
2008-09-05

CVE-2002-1878

PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter.
Max CVSS
5.0
EPSS Score
5.18%
Published
2002-12-31
Updated
2008-09-05
12 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close