inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and previous versions allows remote malicious users to obtain MySQL data via the inc/mysql.php value of the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dzcp dev\\!l\\'z clanportal |