Unrated severityNVD Advisory· Published Aug 19, 2009· Updated Jun 16, 2026
CVE-2008-6983
CVE-2008-6983
Description
modules/tool/hitcounter.php in devalcms 1.4a allows remote attackers to execute arbitrary PHP code via the HTTP Referer header with a target file specified in the gv_folder_data parameter, as demonstrated by modifying modules/tool/url2header.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.