CyberSec.Space Logo
CVEブラウザに戻る

CVE-2010-3419

HIGH
7.5
CVSS Severity Score
EPSS Score0.1290%
EPSS Percentile3.78th
Published2010年9月16日
Last Modified2026年4月29日

Vulnerability Description

Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 2.2.3 allow remote attackers to execute arbitrary PHP code via a URL in the current_user_id parameter to (1) familynews.php and (2) settings.php.

Affected Platforms (CPE)

📦
Haudenschilt

Family Connections Cms

= 2.2.3

References & Advisories

🔗 http://packetstormsecurity.org/1009-exploits/fcms-rfi.txt
🔗 http://www.exploit-db.com/exploits/14965
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/61722
🔗 http://packetstormsecurity.org/1009-exploits/fcms-rfi.txt
🔗 http://www.exploit-db.com/exploits/14965
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/61722

関連する脆弱性情報

CVE-2012-06998.8

Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and earlier allow remote attac...

CVE-2011-51306.8

dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1, when register_globals is enabled, allows remote attackers to execute ...

CVE-2008-29016.5

Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execu...

CVE-2009-20106.5

Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.9 and earlier allow remote authenticated us...

CVE-2010-3419 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space