CVE-2002-2298 — MEDIUM severity vulnerability (PHP remote file inclusion vulnerability in config.php in Tha)
PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.
| CVE ID | CVE-2002-2298 |
|---|---|
| Severity | MEDIUM |
| CVSS score | 6.8 |
| CVSS vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
| CWE | CWE-94 |
| Status | Modified |
| Published | 2002-12-31 |
| Last modified | 2026-04-16 |
| Description | PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →