PHP remote file inclusion vulnerability in admin/admin.php in MF Piadas 1.0 allows remote malicious users to execute arbitrary PHP code via the page parameter. NOTE: the same vector can be used for cross-site scripting, but CVE analysis suggests that this is resultant from file inclusion of HTML or script.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mastersfusion mf piadas 1.0 |