index.php in Shopweezle 2.0 allows remote attackers to include arbitrary local files via the url parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Shopweezle | Kansok_communications | 2.0_personal | 2.0_personal |
Shopweezle | Kansok_communications | 2.0_professional_plus | 2.0_professional_plus |
Shopweezle | Kansok_communications | 2.0 | 2.0 |
Shopweezle | Kansok_communications | 2.0_professional | 2.0_professional |