include/modules/top/1-random_quote.php in Minb Is Not a Blog (minb) 0.1.0 allows remote malicious users to execute arbitrary PHP code via the quotes_to_edit parameter. NOTE: this issue has been reported as an unrestricted file upload by some sources, but that is a potential consequence of code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
minb minb is not a blog 0.1.0 |