Intrusion Prevention



PhP Generic has a remote file-include vulnerability. A remote attacker could execute an arbitrary script on the web server with the privileges of the server via a specially-crafted URL request to the 'membres/membreManager.php' script, by using the 'include_path' parameter to specify a malicious PHP file from a remote system.

Affected Products

PhP Generic Library and Framework for Comm.


Gain Access.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References