Multiple PHP remote file inclusion vulnerabilities in Docebo LMS 2.05 allow remote malicious users to execute arbitrary PHP code via a URL in the lang parameter to (1) modules/credits/business.php, (2) modules/credits/credits.php, or (3) modules/credits/help.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
docebolms docebolms 2.0.5 |