2 matches found
PT-2023-8978 · Unknown · Ce Phoenix
Name of the Vulnerable Software and Affected Versions: CE Phoenix versions 1.0.8.20 Description: The issue is related to incorrect code generation management in the /admin/define language.php script of the CE Phoenix e-commerce software. This allows a remote attacker to execute arbitrary code by...
PT-2006-5617 · Mclinkscounter · Mclinkscounter
Name of the Vulnerable Software and Affected Versions: mcLinksCounter version 1.1 Description: The issue allows remote attackers to potentially execute arbitrary PHP code via a URL in the langfile parameter in several PHP files, including "login.php", "stats.php", "detail.php", and "erase.php"...