Description
modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5 allows remote attackers to execute arbitrary PHP code via the code parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Download from files Arbitrary File Upload (1.48)
LimeSurvey CVE-2019-16176 Vulnerability (CVE-2019-16176)
Oracle Application Server Other Vulnerability (CVE-2006-5355)
WordPress Plugin Customer Service Software & Support Ticket System Cross-Site Scripting (5.5.1)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8657)