An issue exists in ISPConfig prior to 3.2.11p1. PHP code injection can be achieved in the language file editor by an admin if admin_allow_langedit is enabled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ispconfig ispconfig 3.2.11 |
||
ispconfig ispconfig |