Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the staticpath parameter to (1) modules/Discipline/CategoryBreakdownTime.php or (2) modules/Discipline/StudentFieldBreakdown.php.
Max CVSS
7.5
EPSS Score
2.93%
Published
2007-09-11
Updated
2017-09-29
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the FocusPath parameter.
Max CVSS
7.5
EPSS Score
2.93%
Published
2007-09-11
Updated
2017-09-29
2 vulnerabilities found