Description
PHP remote file inclusion vulnerability in templates/tmpl_dfl/scripts/index.php in BoonEx Dolphin 5.2 allows remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter. NOTE: it is possible that this issue overlaps CVE-2006-4189.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2911 Vulnerability (CVE-2019-2911)
WordPress Plugin My Category Order 'parentID' Parameter SQL Injection (2.8)
Dotclear Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-1613)
Oracle Database Server CVE-2010-3590 Vulnerability (CVE-2010-3590)
WordPress Plugin Ultimate WordPress Auction Multiple Vulnerabilities (4.0.5)