For all users who have not downloaded the latest security patch for I-RATER PLATINUM please either do so now or log a support request via our online helpdesk to have a member of support do so for you.
A vulnerability in I-Rater Platinum, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "include_path" parameter in "include/common.php" and "/admin/config_settings.tpl.php" isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources. The latest version fixes this version.
Finally, the new version, completely rewritten from scratch will be released this week.
Many thanks.
I-RATER dev team
|
Comparison Chart | BASIC | PRO | PLATINUM | BUNDLE
HOME
DEMO