Arbitrary PHP Code Execution via Remote File Inclusion in Les Commentaires 2.0

Arbitrary PHP Code Execution via Remote File Inclusion in Les Commentaires 2.0

CVE-2004-0246 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admin.php in Les Commentaires 2.0 allow remote attackers to execute arbitrary PHP code via the rep parameter.

Learn more about our Web Application Penetration Testing UK.