Описание
Code injection in MCMS
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.
Пакеты
Наименование
net.mingsoft:ms-mcms
maven
Затронутые версииВерсия исправления
<= 5.2.7
Отсутствует
Связанные уязвимости
CVSS3: 9.8
nvd
больше 3 лет назад
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.