PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter in usr/extensions/get_infochannel.inc.php and the (2) GLOBALS["root_path"] parameter in usr/extensions/get_tree.inc.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redgraphic sapid cms 1.2.3 |