Multiple PHP remote file inclusion vulnerabilities in Blogator-script prior to 1.01 allow remote malicious users to execute arbitrary PHP code via a URL in the incl_page parameter in (1) struct_admin.php, (2) struct_admin_blog.php, and (3) struct_main.php in _blogadata/include.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
blogator-script blogator-script 0.90 |
||
blogator-script blogator-script 0.93 |
||
blogator-script blogator-script 0.92 |
||
blogator-script blogator-script |
||
blogator-script blogator-script 0.95 |
||
blogator-script blogator-script 0.91 |
Vulmon