CVE-2008-1989

PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.
Configurations

Configuration 1

cpe:2.3:a:e107:e107:*:*:*:*:*:*:*:*
cpe:2.3:a:123flashchat:123_flash_chat_module:6.8.0:*:*:*:*:*:*:*

Information

Published : 2008-04-27 09:05

Updated : 2017-09-29 01:30


NVD link : CVE-2008-1989

Mitre link : CVE-2008-1989

Products Affected
No products.
CWE