Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-2538
CVE-2004-2538
Description
Direct static code injection vulnerability in the PCG simple application generation in phpCodeGenie before 3.0.2 allows remote authenticated users to execute arbitrary code via the (1) header or (2) footer.
Affected products
7cpe:2.3:a:nilesh_dosooye:phpcodegenie:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:*:*:*:*:*:*:*:*range: <=3.0.1
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:1.21:*:*:*:*:*:*:*
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:3.0_alpha:*:*:*:*:*:*:*
- cpe:2.3:a:nilesh_dosooye:phpcodegenie:3.0_beta:*:*:*:*:*:*:*
- Range: <3.0.2
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.