Vulnerabilities > Gonicus > Gonicus System Administration > 1.0

DATE CVE VULNERABILITY TITLE RISK
2003-12-31 CVE-2003-1412 Code Injection vulnerability in Gonicus System Administration 1.0
PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote attackers to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) 4mailinglists/index.php, (5) 3departaments/index.php, and (6) 2groupd/index.php in 2administration/; or (7) the base parameter to include/help.php.
network
gonicus CWE-94
6.8
6.8