PHP Remote File Inclusion Vulnerabilities in Web Reference Database (refbase) Install.php

PHP Remote File Inclusion Vulnerabilities in Web Reference Database (refbase) Install.php

CVE-2015-7381 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in install.php in Web Reference Database (aka refbase) through 0.9.6 allow remote attackers to execute arbitrary PHP code via the (1) pathToMYSQL or (2) databaseStructureFile parameter, a different issue than CVE-2015-6008.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.