Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-1878

CVE-2002-1878

Description

PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter.

Affected products

3

W Agora/W Agora3 versions
cpe:2.3:a:w-agora:w-agora:4.1.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:w-agora:w-agora:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:w-agora:w-agora:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:w-agora:w-agora:4.1.3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

www.iss.net/security_center/static/9317.phpnvdPatch
archives.neohapsis.com/archives/bugtraq/2002-06/0055.htmlnvdExploit
www.ifrance.com/kitetoua/tuto/W-Agora.txtnvdExploit
www.securityfocus.com/bid/4977nvdExploit
www.w-agora.net/current/view.phpnvd

News mentions

0

No linked articles in our index yet.