PHP remote file inclusion vulnerability in administration/user/lib/group.inc.php in OpenSurveyPilot (osp) 1.2.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the cfgPathToProjectAdmin parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensurveypilot opensurveypilot |