Filtered by vendor H-fj Subscriptions
Filtered by product Mt-phpincgi Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2015-2945 1 H-fj 1 Mt-phpincgi 2024-08-06 N/A
mt-phpincgi.php in Hajime Fujimoto mt-phpincgi before 2015-05-15 does not properly restrict URLs, which allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted request, as exploited in the wild in May 2015.