Arbitrary Local File Inclusion in YaPiG 0.92b via BASE_DIR Parameter in global.php

Arbitrary Local File Inclusion in YaPiG 0.92b via BASE_DIR Parameter in global.php

CVE-2005-1883 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

global.php in YaPiG 0.92b allows remote attackers to include arbitrary local files via the BASE_DIR parameter.

Learn more about our Api Penetration Testing.