Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote malicious users to overwrite configuration variables via URL parameters, which are evaluated as PHP variable variables.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jetbox jetbox cms 2.1 |
||
jetbox jetbox cms 2.1_sr1 |