Multiple PHP remote file inclusion vulnerabilities in KCWiki 1.0 allow remote malicious users to execute arbitrary PHP code via a URL in the page parameter to (1) minimal/wiki.php and (2) simplest/wiki.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kcwiki kcwiki 1.0 |