Direct static code injection vulnerability in admincp/user_help.php in Headstart Solutions DeskPRO 3.0.2 allows remote authenticated users to inject arbitrary PHP code into an unspecified file via a new_entry value in the do parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
headstart solutions deskpro 3.0.2 |