Vulnerabilities > CVE-2004-0246 - Module File Include vulnerability in Laurent Adda LES Commentaires 2.0

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
laurent-adda
critical
exploit available
NVD
Published: 2004-11-23
Updated: 2017-07-11

Summary

Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admin.php in Les Commentaires 2.0 allow remote attackers to execute arbitrary PHP code via the rep parameter.

Vulnerable Configurations

Part Description Count
Application
Laurent_Adda
1

Exploit-Db

  • descriptionLaurent Adda Les Commentaires 2.0 PHP Script derniers_commentaires.php Remote File Inclusion. CVE-2004-0246. Webapps exploit for php platform
    idEDB-ID:23620
    last seen2016-02-02
    modified2004-01-30
    published2004-01-30
    reporterHimeur Nourredine
    sourcehttps://www.exploit-db.com/download/23620/
    titleLaurent Adda Les Commentaires 2.0 PHP Script derniers_commentaires.php Remote File Inclusion
  • descriptionLaurent Adda Les Commentaires 2.0 PHP Script admin.php Remote File Inclusion. CVE-2004-0246. Webapps exploit for php platform
    idEDB-ID:23621
    last seen2016-02-02
    modified2004-01-30
    published2004-01-30
    reporterHimeur Nourredine
    sourcehttps://www.exploit-db.com/download/23621/
    titleLaurent Adda Les Commentaires 2.0 PHP Script admin.php Remote File Inclusion
  • descriptionLaurent Adda Les Commentaires 2.0 PHP Script fonctions.lib.php Remote File Inclusion. CVE-2004-0246. Webapps exploit for php platform
    idEDB-ID:23619
    last seen2016-02-02
    modified2004-01-30
    published2004-01-30
    reporterHimeur Nourredine
    sourcehttps://www.exploit-db.com/download/23619/
    titleLaurent Adda Les Commentaires 2.0 PHP Script fonctions.lib.php Remote File Inclusion

References