Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the g_include parameter to include/include_top.php and certain other PHP scripts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
work system e-commerce work system e-commerce 3.0.4 |
||
work system e-commerce work system e-commerce 3.0.41 |
||
work system e-commerce work system e-commerce 3.0.5 |
||
work system e-commerce work system e-commerce 3.0.3 |