Description
Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (4.6.12)
WordPress Plugin Payment Form for PayPal Pro Multiple Cross-Site Scripting Vulnerabilities (1.0.1)
WordPress Plugin Count per Day SQL Injection (3.4)
MySQL CVE-2021-2174 Vulnerability (CVE-2021-2174)
CKEditor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-31541)