Vulnerabilities > CVE-2005-0860 - Remote File Include vulnerability in the Rusted Gate TRG News 3.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

the-rusted-gate

exploit available

NVD

Published: 2005-05-02

Updated: 2008-09-05

Summary

PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to (1) article.php, (2) authorall.php, (3) comment.php, (4) display.php, or (5) displayall.php.

Vulnerable Configurations

Part	Description	Count
Application	The_Rusted_Gate THE Rusted Gate TRG News 3.0	1

Exploit-Db

description	TRG News 3.0 Script Remote File Include Vulnerability. CVE-2005-0860 . Webapps exploit for php platform
id	EDB-ID:25243
last seen	2016-02-03
modified	2005-03-21
published	2005-03-21
reporter	Frank_Reiner
source	https://www.exploit-db.com/download/25243/
title	TRG News 3.0 Script Remote File Include Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References