Description

PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.

Remediation

References

CVE-2006-5256

Related Vulnerabilities

WordPress 4.6.x Cross-Domain Flash Injection Vulnerability (4.6 - 4.6.9)

WordPress Plugin Facebook Button by BestWebSoft Cross-Site Scripting (2.53)

Internet Information Services Other Vulnerability (CVE-2002-0148)

WordPress Plugin Request a Quote Cross-Site Scripting (2.3.4)

Moodle Credentials Management Errors Vulnerability (CVE-2009-4304)

Severity

High

Classification

CVE-2006-5256

Tags

Missing Update Known Vulnerabilities