Description

Multiple PHP remote file inclusion vulnerabilities in BoonEx Dolphin 6.1.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) dir[plugins] parameter to (a) HTMLSax3.php and (b) safehtml.php in plugins/safehtml/ and the (2) sIncPath parameter to (c) ray/modules/global/inc/content.inc.php. NOTE: vector 1 might be a problem in SafeHTML instead of Dolphin.

Remediation

References

CVE-2008-3167

Related Vulnerabilities

WordPress Plugin BuddyPress Extended Friendship Request Cross-Site Scripting (1.0.1)

WordPress Plugin Audio Player Cross-Site Scripting (2.0.4.5)

Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-9757)

Jenkins Improper Input Validation Vulnerability (CVE-2021-21639)

WordPress Plugin GB Team Stats Cross-Site Scripting (1.5.1)

Severity

Critical

Classification

CVE-2008-3167 CWE-94

Tags

Missing Update Known Vulnerabilities