Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager prior to 1.1, as used in tinymce prior to 1.4.2, phpMyFAQ 2.6 prior to 2.6.19 and 2.7 prior to 2.7.1, and possibly other products, allows remote malicious users to inject arbitrary PHP code into data.php via crafted parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpletter ajax file and image manager 1.0 |
||
phpletter ajax file and image manager 0.5.7 |
||
phpletter ajax file and image manager 0.5.5 |
||
phpletter ajax file and image manager 0.5 |
||
phpletter ajax file and image manager |
||
phpmyfaq phpmyfaq 2.7.0 |
||
phpmyfaq phpmyfaq 2.6.10 |
||
phpmyfaq phpmyfaq 2.6.5 |
||
phpmyfaq phpmyfaq 2.6.4 |
||
phpmyfaq phpmyfaq 2.6.3 |
||
phpletter ajax file and image manager 0.9 |
||
phpletter ajax file and image manager 0.7.10 |
||
phpletter ajax file and image manager 0.6.12 |
||
phpmyfaq phpmyfaq 2.6.18 |
||
phpmyfaq phpmyfaq 2.6.16 |
||
phpmyfaq phpmyfaq 2.6.8 |
||
phpmyfaq phpmyfaq 2.6.6 |
||
phpmyfaq phpmyfaq 2.6.2 |
||
phpmyfaq phpmyfaq 2.6.0 |
||
phpletter ajax file and image manager 0.8.24 |
||
phpletter ajax file and image manager 0.8.9 |
||
phpletter ajax file and image manager 0.8.8 |
||
phpletter ajax file and image manager 0.8 |
||
phpmyfaq phpmyfaq 2.6.14 |
||
phpmyfaq phpmyfaq 2.6.13 |
||
phpmyfaq phpmyfaq 2.6.12 |
||
phpmyfaq phpmyfaq 2.6.11 |
||
phpletter ajax file and image manager 0.7.8 |
||
phpletter ajax file and image manager 0.6 |
||
phpmyfaq phpmyfaq 2.6.17 |
||
phpmyfaq phpmyfaq 2.6.15 |
||
phpmyfaq phpmyfaq 2.6.9 |
||
phpmyfaq phpmyfaq 2.6.7 |
||
phpmyfaq phpmyfaq 2.6.1 |
||
tinymce tinymce |