CVE-2008-1760

Name of the Vulnerable Software and Affected Versions Blogator-script version 1.0

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the incl page parameter in several PHP files, including struct admin.php, struct admin blog.php, and struct main.php in the blogadata/include directory.

Recommendations For Blogator-script version 1.0, update to version 1.01 or later to resolve the issue. As a temporary workaround, consider restricting access to the incl page parameter in the affected PHP files until a patch is available.