install\save.php in WebsiteBaker v2.10.0 allows remote malicious users to execute arbitrary PHP code via the database_username, database_host, or database_password parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
websitebaker websitebaker 2.10.0 |