PHP remote file inclusion vulnerability in index.php in gnopaste 0.5.3 and previous versions allows remote malicious users to execute arbitrary PHP code via the GNP_REAL_PATH parameter. NOTE: CVE and a third party dispute this issue, since GNP_REAL_PATH is a constant, not a variable
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnopaste gnopaste 0.5.2 |
||
gnopaste gnopaste |