PHP remote file inclusion vulnerability in payment.php in BosDev BosDates allows remote attackers to execute arbitrary PHP code via a URL in the insPath parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bosdates | Bosdev | 3.1 | 3.1 |
Bosdates | Bosdev | 4.0 | 4.0 |
Bosdates | Bosdev | 3.0 | 3.0 |
Bosdates | Bosdev | 3.2 | 3.2 |