VULHUB ™

Active PHP Bookmarks (APB) is prone to multiple issues which may allow a remote attacker to cause a malicious external file to be included and interpreted. Attackers may influence include paths for a number of APB scripts. By specifying a path to a resource (such as a malicious PHP script) on a remote attacker-controlled server, it is possible to cause arbitrary commands to be executed with the privileges of the webserver process.

Active PHP Bookmarks (APB) is prone to multiple issues which may allow a remote attacker to cause a malicious external file to be included and interpreted. Attackers may influence include paths for a number of APB scripts. By specifying a path to a resource (such as a malicious PHP script) on a remote attacker-controlled server, it is possible to cause arbitrary commands to be executed with the privileges of the webserver process.