Summary
EPractize Labs Subscription Manager is prone to a remote PHP code- injection vulnerability.
An attacker can exploit this issue to inject and execute arbitrary PHP code in the context of the affected application. This may facilitate a compromise of the application and the underlying system other attacks
are also possible.
References
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
- 68designs 68kb Multiple Remote File Include Vulnerabilities
- A Really Simple Chat Multiple SQL Injection Vulnerabilities
- Atutor AContent Multiple SQL Injection and XSS Vulnerabilities
- ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities