lib/execute/execSetResults.php in TestLink prior to 1.9.13 allows remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via the filter_result_result parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
testlink testlink |