CVE-2015-1371

Unrestricted file upload vulnerability in ferretCMS 1.0.4-alpha allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in custom/uploads/.

Date published : 2015-01-27

http://www.securityfocus.com/bid/72287

https://github.com/JRogaishio/ferretCMS/issues/63