PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 up to and including 1.11 allows remote malicious users to execute arbitrary PHP code via a URL in the tmp_sid parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freshscripts fresh email script 1.0 |
||
freshscripts fresh email script 1.11 |