| Titel | innocms Innovative Content Management System v0.3.1 SSTi |
|---|
| Beschreibung | In the backend of innocms, you can edit templates for pages like products and about on the "/panel/pages/1/edit" page. These templates allow the execution of functions like system to run system commands, and they can also execute PHP code. This is very dangerous and should not be allowed. |
|---|
| Quelle | ⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE15-1.md |
|---|
| Benutzer | Dee.Mirage (UID 71702) |
|---|
| Einreichung | 07.08.2024 09:14 (vor 2 Jahren) |
|---|
| Moderieren | 16.08.2024 22:48 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 274907 [InnoCMS 0.3.1 Backend /panel/pages/1/edit erweiterte Rechte] |
|---|
| Punkte | 17 |
|---|