CVE-2013-10070 | PHP-Charts 1.0 GET Parameter wizard/url.php eval eval injection (EDB-24201)

A vulnerability has been found in PHP-Charts 1.0 and classified as critical. Affected by this vulnerability is the function eval of the file wizard/url.php of the component GET Parameter Handler. The manipulation leads to improper neutralization of directives in dynamically evaluated code. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2013-10070. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2013-10070 | PHP-Charts 1.0 GET Parameter wizard/url.php eval eval injection (EDB-24201)

Post correlati

CVE-2023-40290 | Supermicro X11SSM-F/X11SAE-F/X11SSE-F 1.66 on Windows cross site scripting

CVE-2022-40700 | Admin CSS MU Plugin on WordPress server-side request forgery

CVE-2023-6859 | Mozilla Firefox up to 120 TLS Socket use after free

CVE-2024-3482 | OpenText ArcSight Enterprise Security Manager cross site scripting