QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-0678

Back to search

CVE-2010-0678

Published: Feb 22, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

PHP remote file inclusion vulnerability in includes/moderation.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the includes_directory parameter.

VendorProductVersions

n/a

n/a

affected
n/a

References

11452
exploit
x_refsource_EXPLOIT-DB
38581
third-party-advisory
x_refsource_SECUNIA
62340
vdb-entry
x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now