PHP remote file inclusion vulnerability in template/album.php in DM Albums 1.9.2, as used standalone or as a WordPress plugin, allows remote malicious users to execute arbitrary PHP code via a URL in the SECURITY_FILE parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dutchmonkey dm_album 1.9.2 |
||
dutchmonkey dm album 1.9.2 |