Tellfriend

DATE	CVE	VULNERABILITY TITLE	RISK
2008-05-14	CVE-2008-2198	Code Injection vulnerability in Kmita Tellfriend PHP remote file inclusion vulnerability in kmitaadmin/kmitat/htmlcode.php in Kmita Tellfriend 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the file parameter. network kmita-tellfriend CWE-94	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.