CVE-2001-1468

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
07/02/2001
Last modified:
03/04/2025

Description

PHP remote file inclusion vulnerability in checklogin.php in phpSecurePages 0.24 and earlier allows remote attackers to execute arbitrary PHP code by modifying the cfgProgDir parameter to reference a URL on a remote web server that contains the code.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:secure_reality:phpsecurepages:0.11_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.12_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.13_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.14_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.15_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.16_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.17_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.18_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.19_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.20_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.21_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.22_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.23_beta:*:*:*:*:*:*:*
cpe:2.3:a:secure_reality:phpsecurepages:0.24_beta:*:*:*:*:*:*:*