Vulnerabilities > CVE-2005-1821 - Remote File Include vulnerability in Powerscripts.Org Powerdownload 3.0.2/3.0.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
powerscripts-org
exploit available
NVD
Published: 2005-06-01
Updated: 2016-10-18

Summary

PHP remote file inclusion vulnerability in pdl_header.inc.php in PowerDownload 3.0.2 and 3.0.3 allows remote attackers to execute arbitrary PHP code via the incdir parameter to downloads.php.

Vulnerable Configurations

Part Description Count
Application
Powerscripts.Org
2

Exploit-Db

descriptionPowerDownload 3.0.2/3.0.3 IncDir Remote File Include Vulnerability. CVE-2005-1821. Webapps exploit for php platform
idEDB-ID:25777
last seen2016-02-03
modified2005-05-31
published2005-05-31
reporterSoulBlack Group
sourcehttps://www.exploit-db.com/download/25777/
titlePowerDownload 3.0.2/3.0.3 IncDir Remote File Include Vulnerability

References