/panel/uploads in Subrion CMS 4.2.1 allows remote malicious users to execute arbitrary PHP code via a .pht or .phar file, because the .htaccess file omits these.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
intelliants subrion cms 4.2.1 |