Static code injection vulnerability in installation/setup.php in phpCollab 2.5 rc3 and previous versions allows remote authenticated administrators to inject arbitrary PHP code into include/settings.php via the URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php-collab php-collab |
||
php-collab php-collab 2.4 |
||
php-collab php-collab 2.2 |
||
php-collab php-collab 2.3 |