Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026
CVE-2005-4748
CVE-2005-4748
Description
PHP remote file include vulnerability in functions_admin.php in Virtual War (VWar) 1.5.0 R10 allows remote attackers to include and execute arbitrary PHP code via unspecified attack vectors. NOTE: this issue has been referred to as XSS, but it is clear from the vendor description that it is a file inclusion problem.
Affected products
3cpe:2.3:a:vwar:virtual_war:1.3:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:vwar:virtual_war:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:vwar:virtual_war:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:vwar:virtual_war:1.5.0_r10:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.securityfocus.com/bid/17315nvdPatch
- www.vwar.denvd
News mentions
0No linked articles in our index yet.