sentcms 4.0.x allows remote malicious users to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sentcms sentcms 4.0.0 |