Vulnerabilities

CVE-2017-1000195

by Fred · 16/11/2017

October CMS build 412 is vulnerable to PHP object injection in asset move functionality resulting in ability to delete files limited by file permissions on the server.

Date published : 2017-11-16

https://github.com/octobercms/october/compare/v1.0.412…v1.0.413#diff-c328b7b99eac0d17b3c71eb37038fd61R317

Similar

Tags: Cybersecurity Alert