CVE-2023-36994 Information

Description

In TravianZ 8.3.4 and 8.3.3 Incorrect Access Control in the installation script allows an attacker to overwrite the server configuration and inject PHP code.

Reference

https://bramdoessecurity.com/travianz-hacked/