CVE-2019-16192 in DocCmsinformation

Résumé

par MITRE

upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP archive.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

09/09/2019

Modérer

accepté

Entrée

VDB-141477

CPE

prêt

EPSS

0.02080

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!