← CVECheck
HomeVulnerabilities

CVE-2002-2298 — MEDIUM severity vulnerability (PHP remote file inclusion vulnerability in config.php in Tha)

PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.

CVE IDCVE-2002-2298
SeverityMEDIUM
CVSS score6.8
CVSS vectorAV:N/AC:M/Au:N/C:P/I:P/A:P
CWECWE-94
StatusModified
Published2002-12-31
Last modified2026-04-16
DescriptionPHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →