CScms 4.1 allows remote code execution, as demonstrated by 1');eval($_POST[cmd]);# in Web Name to upload\plugins\sys\Install.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-09-17T04:00:00
Updated: 2024-08-05T10:39:59.538Z
Reserved: 2018-09-16T00:00:00
Link: CVE-2018-17126
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-09-17T04:29:00.670
Modified: 2018-11-19T17:18:28.077
Link: CVE-2018-17126
Redhat
No data.