CVE-2010-3209

CVE-2010-3209 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in Seagull 0.6.7 allow remote attackers to execute arbitrary PHP code via a URL in the includeFile parameter to (1) Config/Container.php and (2) HTML/QuickForm.php in fog/lib/pear/, the (3) driverpath parameter to fog/lib/pear/DB/NestedSet.php, and the (4) path parameter to fog/lib/pear/DB/NestedSet/Output.php.

Learn more about our Web Application Penetration Testing UK.