Vulnerabilities

CVE-2020-10557

by Fred · 16/03/2020

An issue was discovered in AContent through 1.4. It allows the user to run commands on the server with a low-privileged account. The upload section in the file manager page contains an arbitrary file upload vulnerability via upload.php. The extension .php7 bypasses file upload restrictions.

Date published : 2020-03-16

https://github.com/cinzinga/CVEs/tree/master/CVE-2020-10557

https://sourceforge.net/projects/acontent/

Similar

Tags: Cybersecurity Alert