PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management System (OTSCMS) 1.3.0 up to and including 1.4.1 allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[config][otscms][directories][classes] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
otscms otscms 1.4.1 |
||
otscms otscms 1.3.0 |
||
otscms otscms 1.3.3 |
||
otscms otscms 1.3.4 |