Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote malicious users to execute arbitrary PHP code via a URL in the CarpPath parameter to (1) files/carprss.php and (2) files/amazon-bestsellers.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sitebuilder sitebuilder elite 1.2 |