PHP remote file inclusion vulnerability in include/html/config.php in ModernGigabyte ModernBill 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the DIR parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Modernbill | Moderngigabyte | 1.6 (including) | 1.6 (including) |
References
- http://www.securityfocus.com/archive/1/442126/100/0/threaded
- http://www.securityfocus.com/bid/19335
- http://www.solpotcrew.org/adv/solpot-adv-04.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28207
- http://www.securityfocus.com/archive/1/442126/100/0/threaded
- http://www.securityfocus.com/bid/19335
- http://www.solpotcrew.org/adv/solpot-adv-04.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28207