PHP remote file inclusion vulnerability in SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via the (1) SITE_Path parameter to menu_dx.php or (2) CONTENTS_Dir parameter to menu_sx.php.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Savewebportal | Savewebportal | 3.4 (including) | 3.4 (including) |