PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the config[gfwroot] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
carlos eduardo sotelo pinto 0.1.0 |