Multiple PHP remote file inclusion vulnerabilities in NukeHall 0.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter to (1) blocks.php, (2) messages.php, and (3) stories.php in admin/modules/.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-04-21T14:00:00
Updated: 2024-08-07T07:17:25.013Z
Reserved: 2010-04-21T00:00:00
Link: CVE-2009-4779
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-04-21T14:30:00.677
Modified: 2017-08-17T01:31:45.367
Link: CVE-2009-4779
Redhat
No data.