Back to search
CVE-2008-0289
Published: Jan 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
PHP remote file inclusion vulnerability in view_func.php in Member Area System (MAS) 1.7 and possibly others allows remote attackers to execute arbitrary PHP code via a URL in the i parameter. NOTE: a second vector might exist via the l parameter. NOTE: as of 20080118, the vendor has disputed the set of affected versions, stating that the issue "is already fixed, for almost a year."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
3547
third-party-advisory
x_refsource_SREASON
20080118 Re: Member Area System (MAS) Remote File Include Vulnerability (view_func.php)
mailing-list
x_refsource_BUGTRAQ
20080111 Member Area System (MAS) Remote File Include Vulnerability (view_func.php)
mailing-list
x_refsource_BUGTRAQ
mas-viewfunc-file-include(39611)
vdb-entry
x_refsource_XF
27244
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now