Unrated severityNVD Advisory· Published Mar 3, 2004· Updated Jun 16, 2026
CVE-2004-0132
CVE-2004-0132
Description
Multiple PHP remote file inclusion vulnerabilities in ezContents 2.0.2 and earlier allow remote attackers to execute arbitrary PHP code from a remote web server, as demonstrated using (1) the GLOBALS[rootdp] parameter to db.php, or (2) the GLOBALS[language_home] parameter to archivednews.php, and a malicious version of lang_admin.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13cpe:2.3:a:visualshapers:ezcontents:1.40:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:visualshapers:ezcontents:1.40:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.41:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.42:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.43:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.44:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.45:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:1.45b:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:2.0_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:2.0_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:visualshapers:ezcontents:2.0_rc3:*:*:*:*:*:*:*
- Range: <=2.0.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.