Vulnerabilities > CVE-2004-2538 - Unspecified vulnerability in Nilesh Dosooye PHPcodegenie

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
nilesh-dosooye
NVD
Published: 2004-12-31
Updated: 2017-07-11

Summary

Direct static code injection vulnerability in the PCG simple application generation in phpCodeGenie before 3.0.2 allows remote authenticated users to execute arbitrary code via the (1) header or (2) footer.

Vulnerable Configurations

Part Description Count
Application
Nilesh_Dosooye
6

References