PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web 1.1b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.
CPE | Name | Operator | Version |
---|---|---|---|
kr-php_web_content_server | eq | 1.1 | |
kr-php_web_content_server | le | 1.1 | |
kr-php_web_content_server | eq | 1.1 beta |