Multiple eval injection vulnerabilities in the help function in PHPKIT 1.6.1 R2 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary code on the server via unknown attack vectors involving uninitialized variables.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpkit phpkit 1.6.02 |
||
phpkit phpkit 1.6.1 |
||
phpkit phpkit 1.6.03 |