The uploadFile function in upload/index.php in CosCMS prior to 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coscms coscms |
||
coscms coscms 1.41 |
||
coscms coscms 1.3 |