PHP remote file inclusion vulnerability in buycd.php in Paristemi 0.8.3 allows remote malicious users to execute arbitrary PHP code via a URL in the HTTP_DOCUMENT_ROOT parameter, a different vector than CVE-2006-6689.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
paristemi paristemi 0.8.3 |