PHP remote file inclusion vulnerability in lang.php in SPiD before 1.3.1 allows remote attackers to execute arbitrary code via the lang_path parameter.
Software | From | Fixed in |
---|---|---|
spid / spid | 1.0.1 | 1.0.1.x |
spid / spid | 1.0.3 | 1.0.3.x |
spid / spid | 1.0.4 | 1.0.4.x |
spid / spid | 1.1.0 | 1.1.0.x |
spid / spid | 1.2.0 | 1.2.0.x |
spid / spid | 1.2.1 | 1.2.1.x |
spid / spid | 1.2.2 | 1.2.2.x |
spid / spid | 1.2.3 | 1.2.3.x |
spid / spid | 1.3.0 | 1.3.0.x |