CVE-2008-0423

Multiple PHP remote file inclusion vulnerabilities in Lama Software allow remote attackers to execute arbitrary PHP code via a URL in the MY_CONF[classRoot] parameter to (1) inc.steps.access_error.php, (2) inc.steps.check_login.php, or (3) inc.steps.init_system.php in admin/functions/.
Configurations

Configuration 1

cpe:2.3:a:lama:lama_software:*:*:*:*:*:*:*:*

Information

Published : 2008-01-23 10:00

Updated : 2017-09-29 01:30


NVD link : CVE-2008-0423

Mitre link : CVE-2008-0423

Products Affected
No products.
CWE