admin/include/operations.php (via admin/email-harvester.php) in Chadha PHPKB Standard Multi-Language 9 allows malicious users to inject untrusted input inside CSV files via the POST parameter data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
chadhaajay phpkb 9.0 |