Description

PHP remote file inclusion vulnerability in learnPath/include/scormExport.inc.php in Claroline 1.7.4 and earlier allows remote attackers to execute arbitrary PHP code via the includePath parameter.

Remediation

References

CVE-2006-1596

Related Vulnerabilities

WordPress Plugin SVG Support Cross-Site Scripting (2.5.1)

WordPress Plugin Ultimate Maps by Supsystic Cross-Site Scripting (1.2.4)

PHP Other Vulnerability (CVE-2007-1711)

Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-16865)

WordPress Plugin Error Log Viewer by BestWebSoft Cross-Site Scripting (1.0.5)

Severity

High

Classification

CVE-2006-1596

Tags

Missing Update Known Vulnerabilities