Static code injection vulnerability in index.php in Podcast Generator 1.1 and previous versions allows remote authenticated administrators to inject arbitrary PHP code into config.php via the recent parameter in a config change action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
podcast generator podcast generator 1.0_beta4 |
||
podcast generator podcast generator 1.0_beta3 |
||
podcast generator podcast generator 0.92 |
||
podcast generator podcast generator 0.91 |
||
podcast generator podcast generator |
||
podcast generator podcast generator 1.0_beta4a |
||
podcast generator podcast generator 0.94 |
||
podcast generator podcast generator 0.93 |
||
podcast generator podcast generator 1.0 |
||
podcast generator podcast generator 1.0_beta2 |
||
podcast generator podcast generator 1.0_beta |
||
podcast generator podcast generator 0.9 |
||
podcast generator podcast generator 0.81 |
||
podcast generator podcast generator 0.96.2 |
||
podcast generator podcast generator 0.96 |
||
podcast generator podcast generator 0.95 |
||
podcast generator podcast generator 0.8 |
||
podcast generator podcast generator 0.6 |