includes/common.php in RunCMS 1.2 and previous versions calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote malicious users to overwrite arbitrary variables, possibly allowing execution of arbitrary code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
runcms runcms 1.1 |
||
runcms runcms 1.1a |
||
runcms runcms 1.2 |