Carlos Eduardo Sotelo Pinto » 0.1.0 : Security Vulnerabilities, CVEs, CVSS score >= 3
PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the config[gfwroot] parameter.
Max CVSS
6.8
EPSS Score
2.39%
Published
2010-05-06
Updated
2010-05-07
1 vulnerabilities found