Описание
Remote code execution in Subrion
Subrion is an open source php content management system. A Remiote Code Execution (RCE) vulnerability exiss in Subrion CMS 4.2.1 via modified code in a background field; when the information is modified, the data in it will be executed through eval().
Пакеты
Наименование
intelliants/subrion
composer
Затронутые версииВерсия исправления
<= 4.2.1
Отсутствует
Связанные уязвимости
CVSS3: 8.8
nvd
почти 4 года назад
A Remiote Code Execution (RCE) vulnerability exiss in Subrion CMS 4.2.1 via modified code in a background field; when the information is modified, the data in it will be executed through eval().