CVE-2001-1049

2002-03-0905:00:00

mitre

www.cve.org

AI Score

6.9

Confidence

High

EPSS

0.008

Percentile

81.2%

JSON

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

References

archives.neohapsis.com/archives/bugtraq/2001-10/0012.html

phorecast.org/

www.iss.net/security_center/static/7215.php

www.securityfocus.com/bid/3388