🕵️ CVE-2006-6041 | Laurent Van den Reysen WORK system e-commerce up to 3.0.1 Administration index.php g_include code injection (XFDB-30199 / SA22963)
Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com
A vulnerability was found in Laurent Van den Reysen WORK system e-commerce up to 3.0.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php of the component Administration. The manipulation of the argument g_include leads to code injection. This vulnerability is known as CVE-2006-6041. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component. ...