Evacms : Security Vulnerabilities, CVEs, Published In September 2009 (File inclusion)
PHP remote file inclusion vulnerability in eva/index.php in EVA CMS 2.3.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the eva[caminho] parameter to index.php.
Max CVSS
6.8
EPSS Score
0.57%
Published
2009-09-08
Updated
2017-08-17
1 vulnerabilities found