An issue was discovered in UsualToolCMS 8.0. cmsadmin/a_sqlbackx.php?t=sql allows CSRF attacks that can execute SQL statements, and consequently execute arbitrary PHP code by writing that code into a .php file.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/fdbao/UsualToolCMS/issues/1 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-01-12T02:00:00
Updated: 2024-08-04T20:16:24.789Z
Reserved: 2019-01-11T00:00:00
Link: CVE-2019-6244
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-01-12T02:29:00.357
Modified: 2024-11-21T04:46:17.920
Link: CVE-2019-6244
Redhat
No data.