VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-1419

CVE-2004-1419

Description

PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers to execute arbitrary PHP code by modifying the (1) _zb_path parameter to outlogin.php or (2) dir parameter to write.php to reference a URL on a remote web server that contains the code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:zeroboard:zeroboard:4.1_pl2:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:zeroboard:zeroboard:4.1_pl2:*:*:*:*:*:*:*
    • cpe:2.3:a:zeroboard:zeroboard:4.1_pl3:*:*:*:*:*:*:*
    • cpe:2.3:a:zeroboard:zeroboard:4.1_pl4:*:*:*:*:*:*:*
    • (no CPE)range: <=4.1pl4

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.