CVE-2010-1299

Name of the Vulnerable Software and Affected Versions DynPG CMS versions 4.1.0 and earlier

Description The issue allows remote attackers to execute arbitrary PHP code. This can be achieved via a URL in the DefineRootToTool parameter to "counter.php", the PathToRoot parameter to "plugins/DPGguestbook/guestbookaction.php", and the get popUpResource parameter to "backendpopup/popup.php". The attack is possible when magic quotes gpc is disabled and register globals is enabled.

Recommendations For DynPG CMS versions 4.1.0 and earlier, consider disabling the register globals setting and enabling magic quotes gpc to mitigate the risk of exploitation. Additionally, as a temporary workaround, restrict access to the vulnerable parameters DefineRootToTool, PathToRoot, and get popUpResource in the respective PHP files until a patch is available.