Multiple PHP remote file inclusion vulnerabilities in Ourvideo CMS 9.5 allow remote malicious users to execute arbitrary PHP code via a URL in the include_connection parameter to (1) edit_top_feature.php and (2) edit_topics_feature.php in phpi/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ourvideo cms ourvideo cms 9.5 |