Remote file inclusion

2011-10-0910:55:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

0.013 Low

EPSS

Percentile

86.2%

JSON

Multiple PHP remote file inclusion vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to execute arbitrary PHP code via a URL in the class_path parameter to (1) file.php or (2) com_del.php.

CPENameOperatorVersion
saurus_cmseq4.7.0

CPE	Name	Operator	Version
	saurus_cms	eq	4.7.0

References

www.exploit-db.com/exploits/14618