CVE-2004-2601
published 2004-12-31CVE-2004-2601: PHP remote file inclusion vulnerability in UberTec Help Center Live (HCL) allows remote attackers to read local files and possibly execute PHP code via a URL…
PriorityP423medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
1.45%
70.1th percentile
PHP remote file inclusion vulnerability in UberTec Help Center Live (HCL) allows remote attackers to read local files and possibly execute PHP code via a URL in the SKIN_inner parameter to inc/skin.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ubertec | help_center_live | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/13652http://securitytracker.com/id?1012685http://www.gulftech.org/?node=research&article_id=00058-12242004http://www.osvdb.org/12631https://exchange.xforce.ibmcloud.com/vulnerabilities/18695http://secunia.com/advisories/13652http://securitytracker.com/id?1012685http://www.gulftech.org/?node=research&article_id=00058-12242004http://www.osvdb.org/12631https://exchange.xforce.ibmcloud.com/vulnerabilities/18695
2004-12-31
Published