PbootCMS 1.2.2 allows remote malicious users to execute arbitrary PHP code by specifying a .php filename in a "SET GLOBAL general_log_file" statement, followed by a SELECT statement containing this PHP code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pbootcms pbootcms 1.2.2 |