PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.
CPE | Name | Operator | Version |
---|---|---|---|
dev\\!l\\'z_clanportal | eq | 1.5.2 |