PHP object injection in the Ajax endpoint of the backend in ForkCMS below version 5.8.3 allows an authenticated remote user to execute malicious code.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-04T12:28:05
Updated: 2024-08-04T15:05:11.795Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-24036
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-03-04T13:15:14.907
Modified: 2024-11-21T05:14:20.870
Link: CVE-2020-24036
Redhat
No data.