PHP.base.php.BASE_PATH.Parameter.Remote.File.Inclusion
Description
It indicates a possible exploit of a PHP remote file inclusion vulnerability in Radical Designs Activist Mobilization Platform (AMP).
This flaw is due to an input validation error in the "includes/base.php" script that does not validate the "base_path" parameter.
Affected Products
Radical Designs Activist Mobilization Platform (AMP) version 3.2 and prior.
Impact
The execution of arbitrary PHP code on the system.
Recommended Actions
Currently we are not aware of any officially supplied fix for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |