Multiple PHP remote file inclusion vulnerabilities in index.php in Knusperleicht FileManager 1.2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) dwl_download_path or (2) dwl_include_path parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
knusperleicht knusperleicht filemanager |