Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS (aka itcms) 1.9 allows remote malicious users to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
itcms itcms 1.9 |