PHP remote file inclusion vulnerability in modify.php in the XFsection 1.07 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the dir_module parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Xfsection_module |
Xoops |
1.07 |
1.07 |
References