6.05

DATE	CVE	VULNERABILITY TITLE	RISK
2009-03-19	CVE-2009-0970	Code Injection vulnerability in PHPprobid PHP PRO BID 6.05 PHP remote file inclusion vulnerability in includes/class_image.php in PHP Pro Bid 6.05, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileExtension parameter. network phpprobid CWE-94	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.