Description
PHP remote file inclusion vulnerability in tools/packages/import.php in ATutor 1.6.1 pl1 and earlier allows remote authenticated administrators to execute arbitrary PHP code via a URL in the type parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Members Membership Unspecified Vulnerability (3.1.9.2)
Collabtive Improper Input Validation Vulnerability (CVE-2012-2670)
ownCloud Improper Privilege Management Vulnerability (CVE-2021-35946)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.27)
WordPress Plugin White Label CMS Cross-Site Request Forgery (1.5)