Arbitrary PHP Code Execution via lang Parameter in MyGuestbook 0.6.1

Arbitrary PHP Code Execution via lang Parameter in MyGuestbook 0.6.1

CVE-2005-2162 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

PHP remote file inclusion vulnerability in form.inc.php3 in MyGuestbook 0.6.1 allows remote attackers to execute arbitrary PHP code via the lang parameter.

Learn more about our Web Application Penetration Testing UK.