CVE-2008-2974 Information
Feb 14, 2021
cve
Description
Directory traversal vulnerability in chatconfig.php in MM Chat 1.5 when register_globals is enabled allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter.
Reference
http://www.securityfocus.com/bid/29910 https://exchange.xforce.ibmcloud.com/vulnerabilities/43327 https://www.exploit-db.com/exploits/5919
Share on: