ExpressionEngine prior to 5.4.2 and 6.x prior to 6.0.3 allows PHP Code Injection by certain authenticated users who can leverage Translate::save() to write to an _lang.php file under the system/user/language directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
expressionengine expressionengine |