PHP remote file inclusion vulnerability in CliServ Web Community 0.65 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cl_headers parameter to (1) menu.php3 and (2) login.php3.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Web_community | Cliserv | 0.61 | 0.61 |
Web_community | Cliserv | 0.65 | 0.65 |
Web_community | Cliserv | 0.60 | 0.60 |
Web_community | Cliserv | 0.50 | 0.50 |