Remote Code Execution vulnerability in symphony/content/content.blueprintsdatasources.php in Symphony CMS up to and including 2.6.11 allows remote malicious users to execute code and get a webshell from the back-end. The attacker must be authenticated and enter PHP code in the datasource editor or event editor.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
getsymphony symphony |