PHP remote file inclusion vulnerability in activities/workflow-activities.php in XRMS CRM 1.99.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via the include_directory parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xrms xrms crm 1.99.2 |