An issue exists in Craft CMS prior to 3.6.7. In some circumstances, a potential Remote Code Execution vulnerability existed on sites that did not restrict administrative changes (if an attacker were somehow able to hijack an administrator's session).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
craftcms craft cms |