An issue was discovered in HongCMS 3.0.0. There is an Arbitrary Script File Upload issue that can result in PHP code execution via the admin/index.php/template/upload URI.
References
Link | Resource |
---|---|
https://github.com/Neeke/HongCMS/issues/5 | Exploit Third Party Advisory |
https://github.com/Neeke/HongCMS/issues/5 | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 03:46
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/Neeke/HongCMS/issues/5 - Exploit, Third Party Advisory |
Information
Published : 2018-06-29 17:29
Updated : 2024-11-21 03:46
NVD link : CVE-2018-13021
Mitre link : CVE-2018-13021
CVE.ORG link : CVE-2018-13021
JSON object : View
Products Affected
hongcms_project
- hongcms
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type