MidnightBSD

Advisories for laffer

CVE-2005-2328 MEDIUM

PHP remote file inclusion vulnerability in im.php in Laffer 0.3.2.6 and 0.3.2.7 allows remote attackers to execute arbitrary PHP code via the CFG_PATH variable.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
laffer laffer 0.3.2.6
laffer laffer 0.3.2.7