CVE-2008-6486

2009-03-1815:00:00

mitre

www.cve.org

AI Score

7.5

Confidence

High

EPSS

0.008

Percentile

81.6%

JSON

PHP remote file inclusion vulnerability in slideshow_uploadvideo.content.php in SharedLog, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[root_dir] parameter.

References

osvdb.org/51911

www.securityfocus.com/archive/1/497978/100/0/threaded

www.securityfocus.com/bid/32035

exchange.xforce.ibmcloud.com/vulnerabilities/46293