Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Oct 2, 2001· Updated Apr 16, 2026

CVE-2001-1052

CVE-2001-1052

Description

Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Affected products

3

Emergenices Personnel Information System/Empris3 versions
cpe:2.3:a:emergenices_personnel_information_system:empris:0.4:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:emergenices_personnel_information_system:empris:0.4:*:*:*:*:*:*:*
- cpe:2.3:a:emergenices_personnel_information_system:empris:2001-08-10:*:*:*:*:*:*:*
- cpe:2.3:a:emergenices_personnel_information_system:empris:2001-09-08:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

archives.neohapsis.com/archives/bugtraq/2001-10/0012.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/3391nvdVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/7215nvd

News mentions

0

No linked articles in our index yet.