Multiple eval injection vulnerabilities in PHPKIT 1.6.1 R2 and earlier

Multiple eval injection vulnerabilities in PHPKIT 1.6.1 R2 and earlier

CVE-2005-3554 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Multiple eval injection vulnerabilities in the help function in PHPKIT 1.6.1 R2 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary code on the server via unknown attack vectors involving uninitialized variables.

Learn more about our Cis Benchmark Audit For Server Software.