CVE-2002-0451
published 2002-08-12CVE-2002-0451: filemanager_forms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the URL to the code in the lib_path…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.18%
93.5th percentile
filemanager_forms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the URL to the code in the lib_path parameter.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpprojekt | phpprojekt | — | — |
| phpprojekt | phpprojekt | — | — |
| phprojekt | phprojekt | <= 5.1.1 | — |
| phprojekt | phprojekt | — | — |
| phprojekt | phprojekt | — | — |
| phprojekt | phprojekt | — | — |
| phprojekt | phprojekt | — | — |
| phprojekt | phprojekt | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q2wh-2vj3-3rjc: Multiple PHP remote file inclusion vulnerabilities in Albrecht Guenther PHProjekt 5
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-5123 [HIGH] GHSA-q2wh-2vj3-3rjc: Multiple PHP remote file inclusion vulnerabilities in Albrecht Guenther PHProjekt 5
Multiple PHP remote file inclusion vulnerabilities in Albrecht Guenther PHProjekt 5.1.x before 5.1.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lib_path or (2) lang_path parameter in unspecified files, related to code changes intended to fix inclusion, a different vulnerability than CVE-2002-0451, CVE-2006-4204, and CVE-2006-4609.
GHSA
GHSA-7cwr-wh5p-wr26: filemanager_forms
ghsa_unreviewed·2022-04-30
CVE-2002-0451 [HIGH] GHSA-7cwr-wh5p-wr26: filemanager_forms
filemanager_forms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the URL to the code in the lib_path parameter.
No detection rules found.
No writeups or analysis indexed.
http://www.iss.net/security_center/static/8448.phphttp://www.phprojekt.com/modules.php?op=modload&name=News&file=article&sid=19&mode=&order=http://www.securityfocus.com/archive/1/261676http://www.securityfocus.com/bid/4284http://www.iss.net/security_center/static/8448.phphttp://www.phprojekt.com/modules.php?op=modload&name=News&file=article&sid=19&mode=&order=http://www.securityfocus.com/archive/1/261676http://www.securityfocus.com/bid/4284
2002-08-12
Published