RSS   Vulnerabilities for 'Download protect'   RSS

2010-03-05
 
CVE-2009-4666

CWE-94
 

 
Multiple PHP remote file inclusion vulnerabilities in Webradev Download Protect 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[RootPath] parameter to (1) Framework/EmailTemplates.class.php, (2) Customers/PDPEmailReplaceConstants.class.php, and (3) Admin/ResellersManager.class.php in includes/DProtect/.

 

 >>> Vendor: Qualityunit 2 Products
Post affiliate pro
Download protect


Copyright 2024, cxsecurity.com

 

Back to Top