Joshua Eichorn » Phpdocumentor : Security Vulnerabilities, CVEs,
PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary code via a URL in the (1) FORUM[LIB] parameter in Documentation/tests/bug-559668.php and (2) the root_dir parameter in docbuilder/file_dialog.php.
Max CVSS
7.5
EPSS Score
15.60%
Published
2005-12-31
Updated
2018-10-19
1 vulnerabilities found