Nazarkin.name » Weatimages : Security Vulnerabilities, CVEs, Published In 2007 (File inclusion)
PHP remote file inclusion vulnerability in index.php in Weatimages 1.7.1 and earlier, when weatimages.ini is missing, allows remote attackers to execute arbitrary PHP code via a URL in the ini[langpack] parameter.
Max CVSS
7.5
EPSS Score
6.57%
Published
2007-04-12
Updated
2017-10-11
1 vulnerabilities found