Intrusion Prevention

JAF.CMS.Remote.File.Inclusion

Description

It indicates a possible exploit of a file inclusion vulnerability in Salims Softhouse JAF CMS that may allow a remote attacker to execute arbitrary PHP code by sending a specially-crafted URL.

Affected Products

Salims Softhouse JAF CMS 4.0 RC1
Salims Softhouse JAF CMS 3.0 RC
Salims Softhouse JAF CMS 2.5
Salims Softhouse JAF CMS 2.1 .0
Salims Softhouse JAF CMS 2.0.5
Salims Softhouse JAF CMS 2.0
Salims Softhouse JAF CMS 1.5
Salims Softhouse JAF CMS 1.0

Impact

Compromise of the affected system.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2006-7127