Qualityunit : Security Vulnerabilities, CVEs, CVSS score >= 7
Multiple PHP remote file inclusion vulnerabilities in Webradev Download Protect 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[RootPath] parameter to (1) Framework/EmailTemplates.class.php, (2) Customers/PDPEmailReplaceConstants.class.php, and (3) Admin/ResellersManager.class.php in includes/DProtect/.
Max CVSS
7.5
EPSS Score
0.61%
Published
2010-03-05
Updated
2017-09-19
1 vulnerabilities found