Vulnerabilities > CVE-2005-2162 - Remote Security vulnerability in Levcgi.Com Myguestbook 0.6.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

levcgi-com

exploit available

NVD

Published: 2005-07-06

Updated: 2016-10-18

Summary

PHP remote file inclusion vulnerability in form.inc.php3 in MyGuestbook 0.6.1 allows remote attackers to execute arbitrary PHP code via the lang parameter.

Vulnerable Configurations

Part	Description	Count
Application	Levcgi.Com Levcgi.Com Myguestbook 0.6.1	1

Exploit-Db

description	MyGuestbook 0.6.1 Form.Inc.PHP3 Remote File Include Vulnerability. CVE-2005-2162 . Webapps exploit for php platform
id	EDB-ID:25941
last seen	2016-02-03
modified	2005-07-05
published	2005-07-05
reporter	SoulBlack Group
source	https://www.exploit-db.com/download/25941/
title	MyGuestbook 0.6.1 Form.Inc.PHP3 - Remote File Include Vulnerability

References

http://marc.info/?l=bugtraq&m=112059876828730&w=2
http://secunia.com/advisories/15927
http://securitytracker.com/id?1014387
http://www.soulblack.com.ar/repo/papers/advisory/myguestbook_advisory.txt