In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_edittpl.php allows remote malicious users to execute arbitrary PHP code by placing this code into a template.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pluxxml pluxxml 5.7 |