CiviCRM Man In The Middle Multiple Remote Code Execution Vulnerabilities

CiviCRM Man In The Middle Multiple Remote Code Execution Vulnerabilities

CiviCRM is prone to multiple remote code-execution vulnerabilities because the information is transmitted through an unencrypted channel.

Successful exploits will allow remote attackers to execute arbitrary code within the context of the affected application.

CiviCRM versions prior to 4.3.5 are vulnerable.