Multiple PHP remote file inclusion vulnerabilities in Multi-Page Comment System (MPCS) 1.0.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) include.php or (2) functions.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mpcs | Mpcs | * | 1.0.0 (including) |
Mpcs | Mpcs | 0.5.0 (including) | 0.5.0 (including) |