PT-2019-19016 · Onefilecms · Onefilecms

R00Tse7En

Publicado

2019-02-17

Atualizado

2020-08-24

CVE-2019-8408

CVSS v3.1

4.9

Média

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions OneFileCMS version 3.6.13

Description The issue allows remote attackers to modify onefilecms.php by clicking the Copy button twice.

Recommendations For OneFileCMS version 3.6.13, consider disabling the Copy button functionality in onefilecms.php until a patch is available to prevent modification by remote attackers.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2019-8408

Produtos afetados

Onefilecms

PT-2019-19016 · Onefilecms · Onefilecms

CVE-2019-8408

Identificadores relacionados

Produtos afetados

Referências · 3