Salims Softhouse : Security Vulnerabilities, CVEs, (File inclusion)
PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote attackers to execute arbitrary PHP code via a URL in the website parameter.
Max CVSS
7.5
EPSS Score
2.04%
Published
2007-03-06
Updated
2017-10-11
Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) forum/headlines.php.
Max CVSS
6.8
EPSS Score
3.20%
Published
2007-03-06
Updated
2017-10-11
2 vulnerabilities found