PhpTax 'drawimage.php' Remote Arbitrary Command Execution Vulnerability Network Vulnerability

Summary

PhpTax is prone to a remote arbitrary command-execution vulnerability because it fails to properly validate user-supplied input. An attacker can exploit this issue to execute arbitrary commands within the context of the vulnerable application. PhpTax 0.8 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/55759

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 9.7 AV:N/AC:L/Au:N/C:C/I:P/A:C

Related Vulnerabilities

Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability
Assesi 'bg' Parameter SQL Injection vulnerability
ArticleFR CMS 'id' Parameter SQL Injection Vulnerability
Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability
ALCASAR Remote Code Execution Vulnerability

Take action and discover your vulnerabilities