CVE-2005-1377

Published: May 3, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple PHP remote file inclusion vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to execute arbitrary PHP code via unknown vectors.

Affected (3)

Products: Claroline: Claroline

Claroline

1 product

Claroline

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Claroline Claroline	Version 1.5.3
Claroline Claroline	Version 1.6_beta
Claroline Claroline	Version 1.6_rc1

References (14)

http://marc.info/?l=bugtraq&m=111464607103407&w=2

Source: cve@mitre.org

http://secunia.com/advisories/15161

Source: cve@mitre.org

ExploitPatch

http://secunia.com/advisories/15725

Source: cve@mitre.org

http://securitytracker.com/id?1013822

Source: cve@mitre.org

ExploitPatch

http://www.claroline.net/news.php#85

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/13407

Source: cve@mitre.org

ExploitPatch

https://exchange.xforce.ibmcloud.com/vulnerabilities/20300

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111464607103407&w=2