SocialEngine (SE) prior to 2.83 grants certain write privileges for templates, which allows remote authenticated administrators to execute arbitrary PHP code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
social engine social engine 1.0 |
||
social engine social engine 1.1 |
||
social engine social engine 2.1 |
||
social engine social engine 2.4 |
||
social engine social engine 1.4 |
||
social engine social engine 1.6 |
||
social engine social engine 2.5 |
||
social engine social engine 2.7 |
||
social engine social engine 1.7 |
||
social engine social engine 1.8 |
||
social engine social engine |
||
social engine social engine 2.0 |