PHP remote file inclusion vulnerability in authent.php4 in Nicolas Fischer (aka NFec) RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter.
CPE | Name | Operator | Version |
---|---|---|---|
rechnungszentrale | eq | v2-1.1.3 |