VULHUB ™

Remote users with access to the administrative Control Panel may be able to inject malicious PHP code when adding banned users. This code could then be executed, allowing for execution of arbitrary commands in the context of the web server hosting the software.

Remote users with access to the administrative Control Panel may be able to inject malicious PHP code when adding banned users. This code could then be executed, allowing for execution of arbitrary commands in the context of the web server hosting the software.