Remote Code Execution Vulnerability in ICZ MATCHA INVOICE Installer

Remote Code Execution Vulnerability in ICZ MATCHA INVOICE Installer

CVE-2015-5643 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.