Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.6 allow remote attackers to execute arbitrary PHP code via a URL in the includePath cookie to (1) auth/extauth/drivers/mambo.inc.php or (2) auth/extauth/drivers/postnuke.inc.php.
References
Configurations
Information
Published : 2006-06-06 13:06
Updated : 2017-10-18 18:29
NVD link : CVE-2006-2868
Mitre link : CVE-2006-2868
JSON object : View
CWE
Products Affected
claroline
- claroline