CVE-2018-13021

An issue was discovered in HongCMS 3.0.0. There is an Arbitrary Script File Upload issue that can result in PHP code execution via the admin/index.php/template/upload URI.
References
Link Resource
https://github.com/Neeke/HongCMS/issues/5 Exploit Third Party Advisory
https://github.com/Neeke/HongCMS/issues/5 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:hongcms_project:hongcms:3.0.0:*:*:*:*:*:*:*

History

21 Nov 2024, 03:46

Type Values Removed Values Added
References () https://github.com/Neeke/HongCMS/issues/5 - Exploit, Third Party Advisory () https://github.com/Neeke/HongCMS/issues/5 - Exploit, Third Party Advisory

Information

Published : 2018-06-29 17:29

Updated : 2024-11-21 03:46


NVD link : CVE-2018-13021

Mitre link : CVE-2018-13021

CVE.ORG link : CVE-2018-13021


JSON object : View

Products Affected

hongcms_project

  • hongcms
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type