PHP remote file inclusion vulnerability in error.php in GrayCMS 1.1 allows remote attackers to execute arbitrary PHP code by modifying the path_prefix parameter to reference a URL on a remote web server that contains the code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 85.6%