NuytsTech Security

CVE-2012-5224

by ·

PHP remote file inclusion vulnerability in vb/includes/vba_cmps_include_bottom.php in vBadvanced CMPS 3.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pages[template] parameter.

Date published : 2012-10-01

http://www.securityfocus.com/bid/51672

http://packetstormsecurity.org/files/view/109098/vbadvancedcmps-rfilfi.txt

Tags: