CyberSec.Space Logo
Back to CVE Browser

CVE-2010-3419

HIGH
7.5
CVSS Severity Score
EPSS Score0.1290%
EPSS Percentile3.78th
PublishedSep 16, 2010
Last ModifiedApr 29, 2026

Vulnerability Description

Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 2.2.3 allow remote attackers to execute arbitrary PHP code via a URL in the current_user_id parameter to (1) familynews.php and (2) settings.php.

Affected Platforms (CPE)

πŸ“¦
Haudenschilt

Family Connections Cms

= 2.2.3

References & Advisories

πŸ”— http://packetstormsecurity.org/1009-exploits/fcms-rfi.txt
πŸ”— http://www.exploit-db.com/exploits/14965
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/61722
πŸ”— http://packetstormsecurity.org/1009-exploits/fcms-rfi.txt
πŸ”— http://www.exploit-db.com/exploits/14965
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/61722

Related Vulnerabilities

CVE-2012-06998.8

Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and earlier allow remote attac...

CVE-2011-51306.8

dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1, when register_globals is enabled, allows remote attackers to execute ...

CVE-2008-29016.5

Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execu...

CVE-2009-20106.5

Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.9 and earlier allow remote authenticated us...

CVE-2010-3419 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space