PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the gConf[dir][layouts] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
boonex orca 2.0 |
||
boonex orca 2.0.2 |