CVE-2009-1278 Information

Description

Static code injection vulnerability in forms/ajax/configure.php in Gravity Board X (GBX) 2.0 BETA allows remote attackers to inject arbitrary PHP code into config.php via the configure action to index.php.

Reference

http://www.securityfocus.com/bid/34370 https://exchange.xforce.ibmcloud.com/vulnerabilities/49679 https://www.exploit-db.com/exploits/8350