Remote File Inclusion Vulnerability in Benjamin Lefevre Dobermann FORUM 0.5 and earlier

Remote File Inclusion Vulnerability in Benjamin Lefevre Dobermann FORUM 0.5 and earlier

CVE-2002-2200 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.

Learn more about our Web Application Penetration Testing UK.