Multiple PHP remote file inclusion vulnerabilities in index.php3 in EVA-Web 1.1 up to and including 2.2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) aide or (2) perso parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eva-web eva-web |