Description

Multiple PHP remote file inclusion vulnerabilities in BoonEx Dolphin 6.1.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) dir[plugins] parameter to (a) HTMLSax3.php and (b) safehtml.php in plugins/safehtml/ and the (2) sIncPath parameter to (c) ray/modules/global/inc/content.inc.php. NOTE: vector 1 might be a problem in SafeHTML instead of Dolphin.

Remediation

References

CVE-2008-3167

Related Vulnerabilities

WordPress Plugin s2Member Pro 'Coupon Code' Field HTML Injection (111216)

WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.14)

Magento CVE-2019-8121 Vulnerability (CVE-2019-8121)

WordPress Plugin WP Fastest Cache Unspecified Vulnerability (0.8.8.5)

WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)

Severity

Critical

Classification

CVE-2008-3167 CWE-94

Tags

Missing Update Known Vulnerabilities