Multiple PHP remote file inclusion vulnerabilities in DDL CMS 1.0 allow remote malicious users to execute arbitrary PHP code via a URL in the wwwRoot parameter to (1) header.php, (2) submit.php, (3) submitted.php, and (4) autosubmitter/index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ddlcms ddl cms 1.0 |