Vulnerabilities

CVE-2017-11167

by Fred · 12/07/2017

FineCMS 2.1.0 allows remote attackers to execute arbitrary PHP code by using a URL Manager "Add Site" action to enter this code after a ‘, sequence in a domain name, as demonstrated by the ‘,phpinfo() input value.

Date published : 2017-07-12

http://www.03sec.com/3169.shtml

Similar

Tags: Cybersecurity Alert