CVE-2019-16192 in DocCms
Résumé
par MITRE
upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP archive.
Be aware that VulDB is the high quality source for vulnerability data.