Remote command execution (Authenticated RCE)
pligg pligg 203 - CVE-2020-25287 Description : We can acces to anyfile using the_file parameter by template editor menu because of no check on extension and then create webshell into existing php file for exemple Affected version : 203 Information To make this PoC, i just installed the sofware(githubcom/Kliqqi-CMS/Kliqqi-CMS) using WAMP on Windows Vulnerability